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METHOD A ND APPARAT US FOR FACILI TATING DATA REPLICATION 

USING OBJECT GROUPS 



FIELD OF THE INVENTION 
5 The invention relates generally to the field of database management systems. 

More specifically, the invention relates to data replication in a distributed database 
system. 

BACKGROUND OF THE INVENTION 

10 Modern data processing systems are distributed over many interconnected 

processing nodes (sites). The efficiency of these distributed systems depends not 
only upon the processing power of each independent node, but also upon the ability of 
the system to efficiently access the information required by the user. For example, a 
node can access data that resides on storage within the node (perform a "local access") 

15 much faster than it can access data stored in another node (perform a "remote access"). 
To take advantage of the efficiency of local access operations, some systems allow the 
same set of data to be maintained on multiple nodes. The mechanism for maintaining 
multiple copies of the same data on multiple nodes is referred to as data replication. 
One mechanism for performing data replication is described in U.S. Patent 

20 Application No. 08/479,075 entitled "Method and Apparatus for Data Replication" 
filed on June 6, 1995 by Sandeep Jain et al. Using data replication, multiple replicas 
of data can exist in more than one database in a distributed system. 
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A "schema" can be thought of as a group of formatted, stored data. Some 
database management systems utilize several schemas. For example, the physical data 
in a database can be partitioned into several users, each user represented with a 
schema. In this example, a schema acts as a physical division mechanism defining 
5 boundaries between groups of physical data. Other database management systems 
recognize only one schema. In this type of system the physical data in the database all 
resides in the same schema. In either case a schema represents a physical structure of 
the database. 

The lowest level at which replication can be performed is referred to as the unit 
10 of replication. One approach to performing data replication employs "schemas" as the 
unit of replication. This approach will be discussed with respect to a database 
management system that recognizes several schemas. By using schemas as the unit of 
replication, in certain circumstances this approach can replicate no less than all of the 
replicated objects that are members of a given schema. For example, assuming each 
15 object in a schema is required to exist at more than one node, if another node needs 
local copies of a subset of the objects, all the registered replicated objects in the 
schema must be copied to that node, even if the node does not require all the objects. 

Another disadvantage of using this prior schema-level data replication is that 
all schemas at every site have to have the same replicated content. In other words, 
20 every replica of a given schema must contain all the member objects registered as 
replicated objects regardless of whether or not each node requires the replicated data 
modifications of all the replicated objects. These disadvantages result from tying 
replication to schemas as will be discussed further with respect to Figure 1. These 
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disadvantages arise due to the underlying assumption that all schema replicas require 
the same content at each site. When this underlying assumption does not hold true, a 
system that controls replication at the schema-level will be faced with one of two 
limitations: (1) generation of more replication traffic than necessary, or (2) schema 
5 proliferation. Replication traffic is the amount of data that must be passed between the 
nodes in the distributed system to maintain the replicated data. Increased network 
traffic reduces the available bandwidth to perform other activities in the distributed 
system. 

Figure 1 illustrates a distributed processing system employing a schema-level 
10 data replication method. As illustrated by the following example, with this approach, 
excess replication traffic is generated when different nodes have different replication 
needs. Referring to Figure 1, a distributed data processing system comprises node 
1, node 2, and node 3 coupled together with network links 120, 125, and 130. A first 
schema 110 containing objects A, B and C is resident on node 1. Also resident on 
15 node 1 is a second schema 115 containing objects D, E and F. In this example, node 
2 requires access to objects A, C and D, but does not require access to objects B, E or 
F. Node 3 requires access to objects B, C, E and F but does not require access to 
objects A or D. Dashed lines represent an operation that requires the object to be read 
or modified. Nodes containing replicated data are said to be participating in 
20 replication. 

For node 2 to have local access to objects A and C, the data specified in the 
first schema 1 10 must be replicated on node 2. Likewise, for node 3 to have access to 
objects B and C, the data specified in the first schema 1 10 must be replicated on node 
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3. Upon replicating the first schema 1 10 to node 2 and node 3, node 2 will contain a 
replica 140 of the first schema 1 10 and node 3 will contain a replica 150 of the first 
schema 110. Similarly, the data specified in the second schema 115 will have to be 
replicated on node 2 to provide for local access to object D. Further, the data specified 
5 in the second schema 115 will have to be replicated on node 3 to provide for local 
access to objects E and F. Upon replicating the second schema 1 15 to node 2 and 
node 3, node 2 will contain a replica 145 of the second schema 1 15 and node 3 will 
contain a replica 155 of the second schema 115. The inefficiencies of this method 
become apparent when one considers node 2 will unnecessarily receive and store 

10 replicated modifications for objects B, E and F and node 3 will receive and store 

modifications regarding objects A and D for which it has no need. This method also 
has security consequences. For example, the mere presence of object B at node 2 may 
pose a security risk. 

One solution to replication of unnecessary data modification would be to 

15 define schemas at a lower level of granularity. For example, separate schemas could 
be defined for objects A, B, and C (e.g., one schema would comprise only object A, 
another schema would comprise only object B, and another schema would comprise 
only object C). Breaking schemas down in this manner would solve the problem of 
unnecessary replication. Each node could copy only the objects to which it required 

20 access and no more. However, this approach leads to a dramatic increase in the 
number of schemas relative to the number of objects ("schema proliferation"). The 
increased number of schemas increases the complexity and burden of administering 
schemas for the database administrator (DBA). Schemas are typically composed of 
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groups of data that are logically related in a way that has little to do with replication. 
For example, schemas can be used to impose security barriers, allowing different 
security levels to be assigned to individual schemas. Breaking schemas up for the 
purpose of replication would destroy the groupings for which the schemas were 
5 initially established. 

It is, therefore, desirable to provide an apparatus and method for facilitating 
data replication that is independent of schemas and their related constraints. It is also 
desirable to allow a user to assign logical names and administer replication at an 
arbitrary group level that will allow users to distribute objects at a higher level of 
10 granularity than feasible with the prior schema-level data replication method. 
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SUMMARY OF THE INVENTION 

A method and apparatus for replicating data in a computer system having a 
plurality of sites is disclosed. One or more sets of formatted data is stored at a first 
site. A mapping is created between subsets of data within the sets of formatted data 
5 and one or more object groups. One or more remote sites are specified for each of the 
object groups. 

For each of the object groups, a replica of each subset of data that is mapped to 
the object group is created at the one or more specified remote sites. 

When a data modification is detected to a subset of data that has been mapped 
10 to one of the one or more object groups, the data modification is propagated to the 
objects group's one or more remote sites. 

According to one aspect of the invention, the one or more sets of formatted 
data stored at the first site includes a first and a second set of formatted data. The step 
of creating the mapping then includes creating a mapping of a first subset of data 
15 residing in the first set of formatted data to an object group and creating a mapping of 
a second subset of data residing in the second set of formatted data to the same object 
group. 
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BRIEF DESCRIPTION OF THE DRAWINGS 

The present invention is illustrated by way of example, and not by way of 
limitation, in the figures of the accompanying drawings and in which like reference 
numerals refer to similar elements and in which: 

5 

Figure 1 is an illustration of a distributed system performing data replication 
using schemas as the unit of replication. 

Figure 2 is an example of a typical architecture of a node within a distributed 
processing system upon which one embodiment of the present invention can be 
10 implemented. 

Figure 3 is a database data dictionary design for supporting a method of 
specifying a replication environment and replicating data according to one embodiment 
of the present invention. 

Figure 4a is a flow diagram illustrating a method of specifying a replication 
15 environment and replicating data according to one embodiment of the present 
invention. 

Figure 4b is a portion of the flow diagram of Figure 4a. 
Figure 5 is an illustration of a distributed data processing system which 
supports data replication according to one embodiment of the present invention. 
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DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENT 

A method and apparatus for facilitating data replication is described. In the 
following description, for the purposes of explanation, numerous specific details are 
set forth in order to provide a thorough understanding of the present invention. It will 
5 be apparent, however, to one skilled in the art that the present invention may be 

practiced without these specific details. In other instances, well-known structures and 
devices are shown in block diagram form in order to avoid unnecessarily obscuring 
the present invention. 

10 HARDWARE OVERVIEW 

Referring to Figure 2, a computer system is shown as 200. The computer 
system 200 represents a node (site) within a distributed processing system upon which 
the preferred embodiment of the present invention can be implemented. The hardware 
architecture of nodes within the distributed processing system can be varied and diverse. 

15 There is no requirement in the present invention that each node have equivalent and 
compatible processing systems. It is only necessary that each node of the distributed 
processing system be able to communicate on a network or some communication path 
coupling the nodes together. Computer system 200 comprises a bus or other 
communication means 201 for communicating information, and a processing means 202 

20 coupled with bus 201 for processing information. Computer system 200 further 
comprises a random access memory (RAM) or other dynamic storage device 204 
(referred to as main memory), coupled to bus 201 for storing information and 
instructions to be executed by processor 202. Main memory 204 also may be used for 
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storing temporary variables or other intermediate information during execution of 
instructions by processor 202. Computer system 200 also comprises a read only 
memory (ROM) and/or other static storage device 206 coupled to bus 201 for storing 
static information and instructions for processor 202. Data storage device 207 is 
5 coupled to bus 201 for storing information and instructions. 

A data storage device 207 such as a magnetic disk or optical disc and its 
corresponding drive can be coupled to computer system 200. Computer system 200 can 
also be coupled via bus 201 to a display device 221, such as a cathode ray tube (CRT), 
for displaying information to a computer user. An alphanumeric input device 222, 

10 including alphanumeric and other keys, is typically coupled to bus 201 for 

communicating information and command selections to processor 202. Another type of 
user input device is cursor control 223, such as a mouse, a trackball, or cursor direction 
keys for communicating direction information and command selections to processor 202 
and for controlling cursor movement on display 221. This input device typically has 

15 two degrees of freedom in two axes, a first axis (e.g., x) and a second axis (e.g., y), 
which allows the device to specify positions in a plane. 

Alternatively, other input devices such as a stylus or pen can be used to interact 
with the display. A displayed object on a computer screen can be selected by using a 
stylus or pen to touch the displayed object. The computer detects the selection by 

20 implementing a touch sensitive screen. Similarly, a light pen and a light sensitive screen 
can be used for selecting a displayed object. Such devices may thus detect selection 
position and the selection as a single operation instead of the "point and click," as in a 
system incorporating a mouse or trackball. Stylus and pen based input devices as well 
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as touch and light sensitive screens are well known in the art. Such a system may also 
lack a keyboard such as 222 wherein all interface is provided via the stylus as a writing 
instrument (like a pen) and the written text is interpreted using optical character 
recognition (OCR) techniques. 
5 Another device which may optionally be coupled to bus 201 is a hard copy 

device 224 which may be used for printing instructions, data or other information on a 
medium such as paper, film, or similar types of media. 

In one embodiment, a communication device 225 is coupled to bus 201 for use 
in accessing other nodes of the distributed system via a network. The communication 

10 device 225 may include any of a number of commercially available networking 

peripheral devices such as those used for coupling to an Ethernet, token ring, Internet, 
or wide area network. Note that any or all of the components of the system illustrated 
in Figure 2 and associated hardware may be used in various embodiments of the 
present invention. However, the actual system configuration used to implement the 

15 present invention may vary from implementation to implementation. 

The present invention is related to the use of computer system 200 to create 
and maintain replicated object groups that facilitate replication of data among nodes in 
a computer system. As computer system 200 executes a program, it updates a data 
dictionary in main memory 204 to create and maintain the replicated object groups. 

20 
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replicated Object Groups 
A replicated object is a set of data that is copied from one site to one or more 
other sites in a distributed environment. Each copy of a replicated object is referred to 
as a replica. Any replica of a replicated object can potentially be updated, and any 

5 updates made to one replica of a replicated object are ultimately applied at all other 
replicas of the replicated object. An object group is a mapping between objects in one 
or more schemas to logical groups. A replicated object group is an object group that is 
a logical collection of replicated objects. Freed of the constraints related to schemas, 
the members of a given replicated object group can be chosen with an eye toward 

10 facilitating data replication. The replicated objects in a given replicated object group 
can be chosen such that they are logically related in a way that is directly associated 
with replication (e.g., the replicated objects share a common replication destination). 
Thus, replicated object groups allow a higher level mapping which provides extra 
flexibility in defining groups of data that will be replicated together. Advantages of 

15 using object group-level replication include allowing objects to be distributed at a 
higher level of granularity, and allowing distribution of collections of replicated 
objects that potentially span multiple schemas. 

Figure 5 is an illustration of a distributed data processing system which 
supports data replication according to one embodiment of the present invention. The 

20 environment for supporting data replication is referred to as the "replication 

environment." A replication environment includes one or more replicated object 
groups, the replicated objects in the replicated object groups, and the sites containing 
replicas of the replicated objects. The distributed data processing system of Figure 5 
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comprises node 1, node 2, and node 3 coupled together with network links 120, 125, 
and 130. While the system of Figure 5 has three nodes, an arbitrary number of 
nodes in the distributed system may be supported in an arbitrary configuration. A first 
schema 110 containing objects A, B and C is resident on node 1. Also resident on 
5 node 1 is a second schema 115 containing objects D, E and F. In this example, rather 
than replicating data at the schema-level as in the prior approach illustrated by Figure 
1, replicated object groups 535, 560, and 565 have been intelligently chosen to 
facilitate data replication. The replicated object groups in this example have been 
chosen to minimize the inefficiencies of propagating modifications to sites that have no 

10 need for such modifications. 

Like the example illustrated in Figure 1, node 2 requires access to objects A, 
C and D, but does not require access to objects B, E or F. Node 3 requires access to 
objects B, C, E and F but does not require access to objects A and D. Again, dashed 
lines represent an operation that requires the object to be read or modified. 

15 For the sake of illustration, assume that schema 1 10 contains payroll data 

(e.g., salary tables, accrued vacation tables, accrued sick time tables) and schema 115 
contains accounting data (e.g., accounts payable tables, accounts receivable tables, 
and payroll tables). Further assume personnel department users are at node 2 and 
finance department users are at node 3. In this example, instead of copying all the 

20 objects contained in the first schema 1 10 and all the objects contained in the second 
schema 1 15 to node 2 and node 3, only the objects required at each node will be 
replicated. 
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The personnel department users at node 2 primarily rely on payroll data; 
however, they require some accounting data. In contrast, the finance department 
users primarily access accounting data and only some payroll data is required. 
Therefore, replicated object groups 560 and 565 will be copied to node 2 and 
5 replicated object groups 535 and 565 will be copied to node 3. Objects A and D are 
grouped together in replicated object group 560 because they are both required at node 
2 by the personnel department users and neither are required by the finance department 
users at node 3. While the underlying data of objects A and D may be completely 
unrelated (e.g., accrued vacation and accounts receivable), the commonality is the fact 

10 that they will both be replicated to node 2 and not to node 3. Similarly objects B, E, 
and F are grouped together in replicated object group 535; their association based 
purely on the fact that they all will be replicated to node 3 and not to node 2. 

Once the replicated object groups are copied, node 2 will contain a first schema 
510 containing only objects A and C from schema 1 10, a second schema 515 

15 containing only object D, a first replica 575 of replicated object group 560, and a 

second replica 580 corresponding to replicated object group 565. Further, node 3 will 
contain, a first schema 520 containing only objects B and C, a second schema 525 
containing only objects E and F, a first replica 590 corresponding to replicated object 
group 565, and a second replica 530 corresponding to replicated object group 535. 

20 These intelligent groupings illustrate the advantages of using replicated object 

groups for data replication. In contrast to the schema-based replication mechanisms, 
object group-based replication allows the various nodes to contain replicas of only 
those sets of data that are required by the nodes. Thus, in this example, the finance 
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department users at node 3 will not unnecessarily receive payroll data that they do not 
require and the personnel department users at node 2 will not be burdened with 
accounting data that is not required. This decreases both the storage space required 
for replication, and the internode traffic generated during replication. In addition, the 
5 existing schemas are not affected or restricted by the groupings specified in the 
replicated object groups. This example illustrates how employing replicated object 
groups as the logical unit of distribution facilitates data replication. 

Table-Based implementation of Replicated Object Groups 
10 According to one embodiment of the invention, computer system 200 uses a 

plurality of tables to implement replicated object groups. This plurality of tables will 
be discussed in detail with respect to Figure 3. 

Figure 3 illustrates the relationship among the database data dictionary tables 
for one embodiment of the present invention. In Figure 3, one-to-many 
15 relationships are represented by the inverted V at the end of the "many" side of the 
one-to-many relationship. 

A replicated objects table 320 is a table that contains records providing 
information about the objects in each replicated object group. The replicated objects 
table 320 lists all the members of each replicated object group. The replicated objects 
20 table 320 contains columns (attributes) indicating the characteristics and status of 
objects associated with each replicated object group. The columns of the replicated 
objects table 320 are described below in Table 1. 
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Replicated Objects Table 



Column 


Description 


sname 


The owner of the object. 


oname 


The name of the object. 


type 


The type of object (e.g. table, view, package, package 
body, procedure, function, index, synonym, trigger, or 
snapshot). 


status 


The status of the object. 


id 


An identifier associated with the local database object. 


comment 


User-defined comment for the object. 


gname 


The name of the replicated object group that contains the 
object. 



Table 1 



5 In one embodiment, the replicated objects table 320 includes an sname 

column. The sname column indicates the name of the schema that contains the 
replicated objects specified by oname. In this embodiment, the sname column 
identifies the user that owns the object. In another embodiment, the database has only 
one schema and the sname column becomes unnecessary. The oname column 

10 contains the name of the replicated object. The type column indicates the type of 
object that is to be replicated. Replicated objects can include database objects and 
structures such as tables, views, sequences, stored procedures, synonyms, indexes, 
clusters, and database links. In one embodiment, the replicated objects table 320 
includes a status column. The status column indicates the status of a given replica. 

15 The status column is maintained independently at the site of each replica. Exemplary 
status values include the following: Create - Indicates that the local database is an 
attempting to create the object locally; Compare - The replica is being compared with 
the master definition to ensure that they are consistent; Valid - The creation or 
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comparison has completed successfully; Error - The creation or comparison was 
unsuccessful. In one embodiment, the replicated objects table 320 includes an id 
column. The id column is a unique number that identifies the replicated object on the 
local node. In this embodiment, access to the object is faster and easier than accessing 
5 the object by its name (oname). The comment column allows a user supplied 

comment to be associated with the object. The gname column indicates the name of 
the replicated object group to which the object belongs. In other words, the object is 
a member of the replicated object group having the name indicated by the gname 
column. The existence of both a gname and an sname column allows a given object to 

10 be independently associated with both a schema and a replicated object group. 
Therefore, in an environment having multiple schemas, an advantage of this 
embodiment is that it allows a replicated object group to span multiple schemas. This 
means some of the objects in a replicated object group could be members of one 
schema, others could belong to a different schema, and still others might belong to a 

15 third schema. For example, in Figure 5 replicated object group 560 contains object 
A from schema 1 10 and object D from schema 115. 

In one embodiment, a replication destinations table 350 contains records 
providing information about the technique used to propagate data modifications and 
the sites to which each replicated object is replicated. The columns of the replication 

20 destinations table 350 are described below in Table 2. In this embodiment, many 
records in the replication destinations table 350 can be associated with a given record 
in the replicated objects table 320. This relationship allows changes made to a given 
replicated object to propagate to different sites using different propagation techniques. 
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For example, an object might propagate changes asynchronously to one site and data 
modifications to the same object could potentially propagate synchronously to another 
site. The columns of the replication destinations table 350 indicate the technique used 
to propagate operations on an object to the corresponding replica at another replication 
5 site. The operations to be propagated may have resulted from a call to a stored 

procedure or procedure wrapper, or may have been issued against a table directly. In 
one embodiment, the replication sites are classified as either snapshot sites or master 
sites. Master sites receive propagated changes immediately when changes are applied 
to any object being replicated at that site or at user-defined time-based intervals. 
10 Master sites are characterized by the fact that they can support one or more snapshot 
sites. A Snapshot site is refreshed from its associated master site at a time- based 
interval or on demand. 

Replication Destinations Table 

15 



Column 


Description 


sname 


The owner of the object. 


oname 


The name of the replicated object. 


type 


The type of object. 


dblink 


The fully qualified database name of the site to which 
changes are being propagated. 


how 


How the propagation is performed. 


comment 


User-defined comment for the object. 



Table 2 



The replication destinations table 350 contains an sname column, an oname 
column, a type column, a dblink column, a how column, and a comment column. 
20 The sname column, oname column, type column, and comment column are as 
described above with respect to the replicated objects table 320. 
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The dblink column contains the database name of a site to which data 
modifications will be propagated. The replication destinations table 350 will have a 
record corresponding to each object and each site to which the object's data 
modifications are propagated. For example, in Figure 5, the replication destinations 
5 table at node 1 will have a record indicating that node 2 is a site to which changes to 
object C will be propagated and the table will also have a record indicating that node 3 
is a site to which changes to object C will be propagated. In this example, however, 
since object A is only replicated at node 2, the replication destinations table at node 1 
will only need one record corresponding to object A. 

10 The how column indicates the method of propagation to the site listed in the 

dblink column. Exemplary methods include synchronous and asynchronous. If the 
how column is synchronous, propagation to the dblink site is performed 
synchronously. When the how column is asynchronous, propagation to the dblink 
site is performed asynchronously. An advantage of providing the site and method of 

15 propagation to a given site at this level in the database design allows a given object to 
propagate changes to sites independently using different propagation techniques. 

According to another embodiment of the invention, a generated replication 
support objects table 340 is provided. The generated replication support objects table 
340 maintains a list of objects that have been generated to support replication. Since 

20 many support objects may be required for a given object, many records in the 

generated replication support objects table 340 can be associated with each record in 
the replicated objects table 320. The columns of the generated replication support 
objects table 304 are described below in Table 3. 
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Generated Replication Support Objects Table 



Column 


Description 


sname 


The owner of the generated object. 


oname 


The name of the generated object. 


type 


The type of the generated object. 


reason 


Reason for generating the object. 


base_sname 


Owner of the "parent" object. 


base_oname 


Name of the "parent" object. 


base_type 


Type of the "parent" object. 



5 Table 3 



The first four columns relate to the generated object. The sname column 
indicates the name of the schema that contains the generated object. The oname 
column contains the name of the generated object. The reason column indicates why 

10 the generated object was created. The type column indicates the type of the generated 
object. Generated objects include database objects and structures and can include 
triggers, packages, and procedures to support replication of objects. For example, in 
Figure 5 a change to object A at node 1 might fire a generated trigger that calls a 
remote generated procedure at node 2 that applies the same change at the remote site to 

1 5 the replicated object A . 

The generated replication support objects table 340 also includes a base_sname 
column, a base_oname column, and a base_type column. These "base" columns all 
refer to the "parent" object. The "parent" object is the object which the generated 
object was created to support. The base_sname column contains the name of the 

20 schema of which the "parent" object is a member. The base_oname column contains 
the name of the "parent" object. The base_type column indicates the "parent" object's 
type. 
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An object groups table 310 is a table that contains records providing 
information about all the replicated object groups that are being replicated. A one-to- 
many relationship exists between the replicated objects table 320 and the object groups 
table 310; therefore, allowing many objects to be added to (associated with) a given 
replicated object group. For example, in Figure 5 replicated object group 560 
contains objects A and D. In this example, the replicated objects table at node 1 
contains a record for object A associating (registering) it with replicated object group 
560 and a record for object D associating it with replicated object group 560. The 
object groups table 310 maintains a list of replicated object groups that have been 
created for replication. The columns of the object groups table 3 10 indicate the status 
of a given replicated object group. The columns of the object groups table 310 are 
described below in Table 4. 



Object Groups Table 



Column 


Description 


gname 


The name of the replicated object group. 


master 


' Y' indicates that this site is a master site. 
'N' indicates that this site is a snapshot site. 


status 


The status of the site. 


comment 


User-defined comment for the replicated object group. 



Table 4 



The object groups table 310 includes a gname column, a master column, a 
status column, and a comment column. The gname column contains the name 
associated with the replicated object group. The master column indicates whether the 
site where the object groups table 310 resides is a master site or a snapshot site. The 
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status column is available to provide further information about the site. Finally, the 
comment column provides the user the option of supplying a comment regarding the 
associated replicated object group. 

In one embodiment, a schemas table 305 is provided. The schemas table 305 
5 is a table that contains a list of schemas in the database. A one-to-many relationship 
exists between the replicated objects table 320 and the schemas table 305. Thus, 
multiple objects can be associated with each schema listed in the schemas table 305. 
For example, in Figure 5 objects A, B, and C are all associated with (members of) 
schema 110. In another embodiment, the schemas table 305 is unnecessary because 
10 the database is the schema; therefore, only one schema would exist and all replicated 
objects would be associated with this schema. The columns of the schemas table 305 
are described below in Table 5. 

Schemas Table 



Column 


Description 


username 


The name of the user. 


user_id 


Unique number that identifies the user. 


password 


Encrypted password. 


created 


Date of creation. 



Table 5 



The schemas table 305 includes a username column, an optional user_id 
20 column, an optional password column, and an optional created column. The 

username column indicates the name of the user. The user_id column is not required, 
but may be provided for easier access to the user rather than accessing it by the 
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username. The password column contains a password for the associated user. The 
date of creation may also be associated with the user by providing a created column. 

While Figure 3 has been described with reference to tables, various 
alternative mechanisms may be used to represent the data dictionary entities. For 
5 example, an alternative approach in an object-oriented database would be to represent 
the entities 305, 310, 320, 340, and 350 as objects. 

Figures 4a and 4b illustrate a flow diagram illustrating a method of 
specifying a replication environment and replicating data according to one embodiment 
of the present invention. The method begins at step 405 where one of a plurality of 

10 sites is designated as the master definition site for the replicated object group. The 
master definition site is the control point for performing administrative activities for 
the associated replicated object group, the replicated objects in the replicated object 
group, and the snapshot and master sites containing replicas of the replicated object 
group. The master definition site is defined via a procedure call that creates a 

15 replicated object group, step 410. The replicated object group represents a mapping to 
one or more subsets of data within one or more sets of formatted data stored at the 
master definition site. The site at which the replicated object group is created is 
designated as the master definition site for that replicated object group. Creating a 
replicated object group is accomplished by inserting a record corresponding to the new 

20 replicated object group into the object groups table 310. 

Once the replicated object group has been created, at step 415, replicated 
objects can be added to the replicated object group. Importantly, adding a replicated 
object to a replicated object group need not involve physically moving the data 
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associated with the replicated object. Rather, the data underlying the replicated object 
can simply be associated with the replicated object group to which it is added. Adding 
the replicated objects to the replicated object group registers the replicated objects and 
makes them eligible to be replicated to other sites. The registration is accomplished by 
5 adding a record to the replicated objects table 320. This record insertion can be 

performed by a procedure that is supplied with the new replicated object, for example. 
Usually the object to be replicated already exists at the master definition site; however, 
in one embodiment, the procedure that performs the registration also accepts one or 
more Structured Query Language (SQL) Data Definition Language (DDL) statements 

10 which create the replicated object as well. 

In a replication configuration where one or more replication sites will 
propagate changes asynchronously, it is possible for conflicting updates to occur. For 
example, a conflict can be caused by two replication sites modifying the same 
replicated object before propagating their updates to each other. In one embodiment, 

15 if conflict resolution routines are desired they can be supplied via a procedure call, 
step 430. Many conflict resolution methods are available including: applying the data 
with the latest timestamp, applying all data additively, and applying the value from the 
replication site with the highest priority. 

In another embodiment, replication support objects can be generated to support 

20 data replication, step 435. Replication support objects include database object such as 
triggers, packages and procedures. Step 435 further includes adding entries to the 
generated replication support objects table 340 for each of the generated objects. 

The next step is to determine if more replicated objects are to be replicated with 
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this replicated object group, step 440. If more replicated objects are to be added to the 
replicated object group, then steps 415 through 435 can be repeated until all the 
replicated objects that can be grouped together for replication have been added to the 
replicated object group. Otherwise, when the replicated object group has been 
5 completely defined and all the objects have been added, processing proceeds to step 
450. 

At step 450, user input is received that defines one or more sites as replication 
sites. This information will ultimately be written to the object groups table at the 
corresponding remote sites. 

10 At step 455, the member replicated objects of the replicated object group are 

created at each remote replication site. The data associated with the replicated objects 
is replicated to each of the remote replication sites. At this point, the replication 
environment has been configured. 

Once the replicated environment has been configured, the flow continues to 

15 step 460. At step 460, no action is taken until a data modification to a replicated object 
in the replicated object group is detected. 

When a data modification is detected to one of the members of the replicated 
object group, processing proceeds to step 470. At step 470, any changes made to one 
of the replicated objects in the replicated object group are propagated to the replication 

20 sites. The changes are propagated to all master sites immediately or at a predetermined 
time-based interval. The master sites propagate the changes to associated snapshot 
sites at a predetermined time-based interval or on demand. Steps 460 and 470 are 
repeated for each data modification to a replicated object in the replicated object group. 
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In the foregoing specification, the invention has been described with 
reference to specific embodiments thereof. It will, however, be evident that various 
modifications and changes may be made thereto without departing from the broader 
spirit and scope of the invention. The specification and drawings are, accordingly, to 
be regarded in an illustrative rather than a restrictive sense. 
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databases at client sites, which can be separate computer systems from the 
heterogeneous user databases or separate processes running on a computer 
system that maintains the heterogeneous user databases. The system stores 
location information and status information relating to the homogenized 
data in a centralized object broker for object management, thereby 
facilitating location and retrieval of data items from one or more of the 
remote, heterogeneous user databases. 
Exemplary Claim [1]: 

1 . A method of operating a distributed data processing system 
including a plurality of independent remotely located user computers that 
process user data in user databases and at least one object broker 
computer, 

the user computers being interconnected with the object broker 
computer by data communication hardware over a data communication network, 

the user computers being operative to perform data operations of 
storing, updating, and retrieving user data items in response to user 
commands, comprising the steps of: 

(a) for a subject at one of the user computers for which data is to be 
processed irt the system, creating an object instance by assigning a unique 
object identifier to data items associated with the subject by: 

(al) providing a global object identification address space 
corresponding to a range of object identifiers for association with a 
plurality of subjects; and 

(a2) allocating a predetermined range of object identifiers within the 
global object identification address space to each remotely located user 
computer; 

(b) storing the data items associated with the subject at the user 
computer in association with the object identifier; 

(c) at the object broker computer, storing the locations of the user 
computers in a mapping table in association with object identifiers; 

(d) in response to a query to the object broker computer for data 
relating to a particular subject in question, retrieving a selected object 
identifier for the subject in question; 

(e) in response to retrieval of an object identifier for the subject 
in question in the preceding step, retrieving the location of a remote 
user computer associated with the selected object identifier; and 

(f) retrieving data stored at the remote user computer associated with 
the selected object identifier via the data communication network. 

2 04432057 Feb 14 1984 395/608 Method for the dynamic replication 

Nov 27 1981 of data under distributed system 

control to control utilization of 
resources in a multiprocessing, 
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Exemplary Claim [1]: 

1 . A method for operating a computing apparatus having a plurality of 
nodes, each node having storage means for storing a plurality of data 
items and means responsive to a request for accessing a specified data 
item, and communication means interconnecting selected nodes, the method 
including the steps of controlling access to the specified data item and 
controlling the modification of copies of the data item, characterized by 
the steps of: 

distributing data access control to each node of the apparatus; and, 
responsive to a request having a specified currency, dynamically 
replicating data items while selectively deferring conformation of the 
replicated data; 

such that the most current data items migrate to their respective 
affinity nodes. 

3 05627961 May 6 1997 395/182.04 Distributed data processing system 

Jan 23 1996 
Inventor: Sharman; Geoffrey 

Assignee: International Business Machines Corporation 
Abstract: 

Distributed data processing systems with replication of data across 
the system are required to provide data access and availability 
performance approaching that of a stand-alone system with its own data, 
but reductions in network traffic gained by replication must be balanced 
against the additional network traffic required to update multiple copies 
of the data. Apparatus and a method of operating a distributed data 
processing system is provided in which a currency period is associated 
with each copy of a data object and the data object is assumed to be valid 
during the currency period. The apparatus has means for checking (500) 
whether the currency period has expired and means for updating (570, 580) 
the copies. A validity indicator is set on determination of expiry of the 
currency period and when updates are applied to the primary copy, and is 
checked to determine validity of a copy. 
Exemplary Claim [1]: 

1. In a distributed data processing system comprising a plurality of 
data processors in communication with each other and having a central 
processing unit (CPU) and memory, a method of distributed data processing 
comprising the steps of: 

partitioning a data record into non-overlapping parts; 

distributing the parts of the data record across a plurality of data 
processors such that a first data processor holds a primary copy of a part 
of the data record; 

storing at one or more remote data processors (200, 250) a replicated 
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iti^wnwaiMwn service 
Inventor: Gladney; Henry M. et al. 
Assignee: International Business Machines Corporation 
Abstract: 

In a distributed processing system network in which at least one node 
operates as a source location having access to data objects of a database, 
and at least one other node operates as a replica location storing 
replicas of data objects from the source location, managing obsolescence 
of the replicas is performed by having the replica locations submitting 
requests to the source location for ascertaining obsolescence of data 
objects. The source location, responsive to a request from a requesting 
replica location, extracts identifiers of a set of obsolete objects and 
communicates them to the requesting replica location. Upon receiving the 
identifiers, the requesting location renders inaccessible those data 
objects corresponding to the identifiers received. The source location 
then removes those identifiers that have been communicated to the 
requesting replica location. 
Exemplary Claim [1]: 

1 . A method for managing obsolescence of replicas of data objects, the 
objects being utilized in multiple nodes of a distributed processing 
system in which at least one node operates as an object source location 
having access to a source database containing source data objects and at 
least one other node operates as an object replica location having means 
for storing replicas of requested objects received from a source location, 
each source data object being alterable whereby replicas of altered 
objects stored at replica locations may become obsolete, comprising the 
steps of: 

responsive to a request from a first replica location to ascertain 
obsolescence of data objects, extracting at the source location 
identifiers of a set of obsolete objects; 

communicating said identifiers, if any, as an atomic demand/response 
transaction to said first replica location; 

rendering inaccessible at said first replica location any replicas 
corresponding to those identifiers received from the source location; and 

removing from the source location those identifiers communicated to 
said first replica location. 

5 05586310 Dec 17 1996 395/610 System for distributed database 

Nov 23 1993 replicated read with exclusive 

central server transfer of primary 
copies 

Inventor: Sharman; Geoffrey 

Assignee: International Business Machines Corporation 
Abstract: 
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processors as the primary copy for update purposes and the other copies as 
secondary copies: 

applying updates to the data record firstly to the primary copy and 
subsequently propagating (420, 570) updates of said primary copy to the 
other data processors holding secondary copies of the data record; 

in response to a request (800) from one of said data processors 
checking (820) whether a central data processor has responsibility for the 
primary copy or responsibility has been transferred to a second one of 
said data processors; and 

only if the central processor has said responsibility transferring 
(850) responsibility for the primary copy from said first data processor 
to said requesting data processor wherein the secondary copy of the data 
record at the requesting processor is then designated as the primary copy 
of the data record for update purposes such that future updates to the 
data record will firstly be applied at the requesting processor and will 
subsequently be propagated to the other data processors. 

6 05598566 Jan 28 1997 395/750.06 Networked facilities management 
Jan 7 1994 system having a node configured 

with distributed load management 

software to manipulate loads 

controlled by other nodes 
Inventor: Pascucci; Gregory A. et al. 
Assignee: Johnson Service Company 
Abstract: 

A networked system having a wide variety of applications and 
particularly applicable to facilities management systems has multiple 
levels of software in processing nodes. The levels include a "features" 
processing level which communicates requests for data to a software object 
level containing databases of processes and attributes and database 
managers. The database managers in the software object level operate to 
provide data to the high level features in the same format. The software 
object level communicates with a hardware object level which also contains 
databases and database managers to mask differences between operational 
hardware units. By categorizing operational units by type, additional 
units of a known type can be added with only low level hardware object 
database changes. Adding units of a new type is facilitated by software 
changes confined to the lower level hardware and software objects, 
avoiding software changes at high level features. Individual software 
objects are tailored for typical types of inputs and output devices 
encountered by facilities management systems. Universal drive circuitry 
also provides applicability to a broad range of devices. Nodes store 
restoration characteristics of loads controlled by the nodes. After being 
shed to limit energy consumption, software local to the node restores the 
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particular loads controlled by the other nodes; 

executing predefined load shedding processing in the other nodes 
controlling the particular loads by using the local software object 
features, each of the local software object features having a data base 
manager and attributes stored in a data base in each of the other nodes, 
the local software object features shedding the particular loads in 
response to the commands; 

under control of the local software object features, restoring the 
particular loads independently of the commands from the master node in 
response to the attributes of the local software object features. 

7 05444851 Aug 22 1995 395/200.52 Method of accessing configured 
Jan 21 1994 nodes in a facilities management 

system with a non-configured 
device 

Inventor: Woest; Karen L. 
Assignee: Johnson Service Company 
Abstract: 

A networked system having a wide variety of applications and 
particularly applicable to facilities management systems has multiple 
levels of software in processing nodes. The levels include a "features" 
processing level which communicates requests for data to a software object 
level containing databases of processes and attributes and database 
managers. The database managers in the software object level operate to 
provide data to the high level features in the same format. The software 
object level communicates with a hardware object level which also contains 
databases and database managers to mask differences between operational 
hardware units. By categorizing operational units by type, additional 
units of a known type can be added with only low level hardware object 
database changes. Adding units of a new type is facilitated by software 
changes confined to the lower level hardware and software objects, 
avoiding software changes at high level features. Individual software 
objects are tailored for typical types of inputs and output devices 
encountered by facilities management systems. Universal drive circuitry 
also provides applicability to a broad range of devices. A non-configured 
node is connected to a configured network at a location defined by a 
subnet and a local address. The location information and a drop identifier 
are used as a network address for the non-configured node to transmit and 
receive messages. Routing information stored in the configured nodes 
allows non-configured node to communicate with other network nodes. 
Exemplary Claim [1]: 

1. A method of accessing network controllers in a facilities 
management system with a portable computing unit, the network controllers 
in the facilities management system being arranged to control a process, 



iiN? niffih.vwl:: «Htt!tHllers h*tm& COTHtlp.fflM m M least One network iitiif bdnig 
iptotcHcimS^ by at least ot? awn™M«^ Jink, g&eto M1M mtwuik 
rastoflers SMudiUfi am tqwiMtwrrt iii^rfto ffor T^#virs&: f&Ms* Egfl ftfaHf fa? 
tbc pmcras, imd a rjpjcs&sor ntti'todiiig a drssp pottp to processor twins. 

MlMsed m ififlt tin? nelwtirfE. iMlroil^rs \m $m$wws& to eitdi. have a 
network iwH^teii imdteth^ tufa particular Itxqjti^ iii to facilities 
rai^smeirt system the nefwmfe i^Jress Mpfeg a sT#set iotiHraslive ef m. 

a^ieia&ed osrminiiMiicatiPii; link Id which tlie jieSwerrk cnMrall-er is 
03miiecte4, » tell liMltfrra imiailw ofto isswftrfc; emBiioikr,, iwfwl a 
os*$e top ID Wtotirli tot the; network amsrolfer h 4 ccKtirlgiiired 
network witirolkr, the portable wmnmtim being ® iffl^MiigiTOJ 
device rait p^rt of ibt irtrtwdfe to itKtfti&tf cOTpraiii; 

con^timi tire iKPrt&bfe airmimitjing until to a first pearl of a first 
network controller of the network controllers, the first configured 
network controller configured on the system at a first location defined by 
the subset indicative of the communication link and a first local address 
indicative of the first network controller; 

assigning a first network address to the portable computing unit, the 
first network address including the subset, the first local address and a 
first drop identifier indicative of the first drop port of the first 
network controller; 

transmitting a request for data received at an equipment interface of 
a second network controller located at a second network address from the 
portable computing unit to the second network controller, the request 
including the second network address as a destination indicator and the 
first network address as a source indicator; 

transmitting the data from the second network controller to the 
portable computing unit in response to the request for data, the data 
including the second network address as the source indicator and the first 
network address as the destination indicator; 

receiving the data from the second network controller at the processor 
of the first network controller according to the subset and local address 
of the first network address; 

transmitting the data to the portable computing unit through the first 
drop port specified by the first drop identifier portion of the first 
network address. 

8 05463735 Oct 31 1995 395/200.52 Method of downloading information 
Feb 3 1994 stored in an arching device to 

destination network controller 

through intermediate network 

controllers in accordance with 

routing information 
Inventor: Pascucci; Gregory A. et al. 
Assignee: Johnson Service Company 
Abstract: 

A network system having a wide variety of applications and 
particularly applicable to facilities management systems includes network 
controllers which continuously process data related to building and 
industrial, environmental, security and other automated system controls. 
Each network controller has a network address indicative of a 
communication link to which the network controller is connected, a local 
address and a node drop ID to determine whether the network controller is 
a configured or non-configured device. Data stored in an archive device is 
downloaded to a destination network controller in the absence of a routing 
table in the destination network controller by transmitting a download 
request message from the archive device to an intermediate network 
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S, A. iiMMid nf^BlirfRg iiRiroilK¥i st*^ in jarft ardiive &%vm to 
a destination network controller in a facilities management system 
including a plurality of network controllers and an archive device having 
device non-volatile memory, the network controllers being arranged to 
control a process, the network controllers being arranged as at least one 
network and being interconnected by at least one communication link, each 
of the network controllers including a controller non- volatile memory, an 
equipment interface for receiving data relating to the process, and a 
processor including a drop port, the processor being coupled to the 
equipment interface, the facilities management system being initialized so 
that the network controllers are configured to each have a network address 
indicative of a particular location in the facilities management system, 
the network address including a subset indicative of an associated 
communication link to which the network controller is connected, a local 
address indicative of the network controller, and a node drop ID 
indicating whether the network controller is a configured or a 
non-configured network controller, the network address being stored in the 
non-volatile memory of the network controller, the method comprising the 
steps of: 

storing in the non-volatile memory of the archive device a destination 
network address of the destination network controller and an intermediate 
address of an intermediate network controller of the plurality of network 
controllers the destination address being indicative of the location of 
the destination network controller, the intermediate address being 
indicative of the location of the intermediate controller; 

transmitting at least one message from the archive device to the 
intermediate network controller of the plurality of network controllers, 
the intermediate network controller having a routing table including 
routing information; 

transferring control of transmission of the message to the 
intermediate network controller and passing the message from the 
intermediate network controller to the destination network controller in 
accordance with the routing information; 

determining if the message should be forwarded from the destination 
network controller to a non-configured destination network controller 
coupled to the destination network controller in accordance with the node 
drop ID; 

acknowledging receipt of the message by transmitting an acknowledge 
message from the destination network controller to the intermediate 
network controller; and 

transferring control of transmission of the acknowledge message to the 
intermediate network controller, and passing the acknowledge message from 
the intermediate network controller to the archive device in accordance 
with the routing information. 
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databases and database managers to mask differences between operational 
hardware units. By categorizing operational units by type, additional 
units of a known type can be added with only low level hardware object 
database changes. Adding units of a new type is facilitated by software 
changes confined to the lower level hardware and software objects, 
avoiding software changes at high level features. Individual software 
objects are tailored for typical types of inputs and output devices 
encountered by facilities management systems. Universal drive circuitry 
also provides applicability to a broad range of devices. An optical 
isolator is connected between signal line outputs from a node and a line 
driver connected to a pair of lines on a bus. Similarly, an optical 
isolator is connected between signal line receiving inputs and a line 
receiver. The signal lines can be biased to predetermined levels to reduce 
node sensitivity to noise. 
Exemplary Claim [1]: 

1. A computerized node controlling at least one slave device connected 
to a slave device bus having a pair of signal lines, the computerized node 
communicating with the slave devices over the slave device bus and being 
optically isolated from the slave device bus, the node having a mode 
output for providing a mode select signal, a transmit output and a receive 
input, the node comprising: 

a transmit optical isolator connected between the transmit output of 
the node and a line driver connected to the pair of signal lines; 

a receive optical isolator connected between the receive input of the 
node and a line receiver connected to the pair of signal lines; and 

a mode optical isolator having a mode input coupled to the mode 
output, the mode optical isolator activating at least one of the line 
driver or the line receiver in response to the mode select signal, the 
mode select signal being indicative of a transmit mode or a receive mode, 
the pair of signal lines receiving signals from the slave device bus in 
the receive mode and transmitting signals to the slave device bus in the 
transmit mode. 

10 05511188 Apr 23 1996 395/619 Networked facilities management 

Dec 30 1993 system with time stamp comparison 

for data base updates 
Inventor: Pascucci; Gregory A. et al. 
Assignee: Johnson Service Company 
Abstract: 

A networked system having a wide variety of applications and 
particularly applicable to facilities management systems has multiple 
levels of software in processing nodes. The levels include a "features" 
processing level which communicates requests for data to a software object 
level containing databases of processes and attributes and database 
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Exemplary Claim [1]: 

1 . A method of synchronizing a plurality of data bases stored in a 
network, the network including a plurality of nodes communicating over at 
least one communication link, each of the nodes including a storage means 
for storing at least one of the data bases, the method comprising steps 
of: 

storing in a first storage means of a first node of the nodes a first 
time stamp indicating a most recent time of updating a first data base 
stored in the first node; 

automatically and periodically transmitting from the first node the 
first time stamp stored in the first node; 

receiving a second time stamp from a second node of the nodes and 
comparing the second time stamp with the first time stamp, the second time 
stamp being stored in a second storage means of the second node and 
indicating a most recent time of updating a second data base stored in the 
second node; and 

automatically requesting the second node to transmit the second data 
base stored in the second node to the first node if the second time stamp 
is later than the first time stamp. 

11 05522044 May 28 1996 395/200.52 Networked facilities management 

Jan 2 1 1994 system 
Inventor: Pascucci; Gregory A. et al. 
Assignee: Johnson Service Company 
Abstract: 

A networked system having a wide variety of applications and 
particularly applicable to facilities management systems has multiple 
levels of software in processing nodes. The levels include a "features" 
processing level which communicates requests for data to a software object 
level containing databases of processes and attributes and database 
managers. The database managers in the software object level operate to 
provide data to the high level features in the same format. The software 
object level communicates with a hardware object level which also contains 
databases and database managers to mask differences between operational 
hardware units. By categorizing operational units by type, additional 
units of a known type can be added with only low level hardware object 
database changes. Adding units of a new type is facilitated by software 
changes confined to the lower level hardware and software objects, 
avoiding software changes at high level features. Individual software 
objects are tailored for typical types of inputs and output devices 
encountered by facilities management systems. Universal drive circuitry 
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port, the processor being coupled to the equipment interface, the 
facilities management system being initialized so that the network 
controllers are configured to each have a network address indicative of a 
particular location in the facilities management system, the network 
address including a subset indicative of an associated communication link 
to which the network controller is connected, a local address indicative 
of the network controller, and a node drop ID indicating that the network 
controller is a configured network controller, the facilities management 
system comprising: 

a first configured network controller including a first processor 
having a first port for receiving the portable computing unit, the first 
configured network controller configured on the system at a first location 
defined by a first subset indicative of the communication link, a first 
local address indicative of the first configured network controller and 
the node drop ID; 

a second network controller having a first equipment interface, the 
second network controller being coupled to the communication link and 
being configured on the system at a second location defined by a second 
subset indicative of the communication link and a second local address 
indicative of the second configured networked controller, the second 
network controller having a second network address including the second 
subset, the second local address and the node drop ID; 

means for assigning a first network address to the portable computing 
unit, the first network address including the first subset, the first 
local address and a first drop identifier indicative of the first port; 

means for transmitting a request for data received at the first 
equipment interface of the second configured network controller located at 
the second location from the portable computing unit to the second network 
controller, the request including the second network address as a 
destination indicator and the first network address as a source indicator; 

means for transmitting the data from the second configured network 
controller to the portable computing unit in response to the request for 
data, the data including the second network address as the source 
indicator and the first network address as the destination indicator; 

means for receiving the data from the second configured network 
controller at the first processor of the first network controller 
according to the subset and local address of the first configured network 
address; and 

means for transmitting the data to the portable computing unit through 
the first drop port specified by the first drop identifier. 

12 05384697 Jan 24 1995 364/139 Networked facilities management 
Dec 30 1993 system with balanced differential 

analog control outputs 
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database changes. Adding units of a new type is facilitated by software 
changes confined to the Lower level hardware and software objects, 
avoiding software changes at high level features. Individual software 
objects are tailored for typical types of inputs and output devices 
encountered by facilities management systems. Universal drive circuitry 
also provides applicability to a broad range of devices. The sum of an 
analog input signal and a feedback signal is provided to a buffer circuit. 
A current sensing network connected to the output of the buffer forms a 
first control signal. An equal amplitude, oppositely polarized signal 
forms a second control signal. An external signal switches the feedback 
network to produce a voltage derived from a current output of the first 
control signal and a voltage output of the first control signal. 
Exemplary Claim [1]: 

1. Apparatus for generating first and second balanced differential 
analog control signals comprising: 

a) means for summing an analog input signal and an output from a 
feedback network connected between one of said control signals and said 
summing means; 

b) a buffer circuit having an input connected to an output of said 
summing means and an output connected to a current sensing network input, 
said current sensing network having an output being said first control 
signal; 

c) means connected to said current sensing network output for 
generating a balanced signal having a same amplitude and an oppositely 
polarized sense from said first control signal, said balanced signal being 
said second control signal; and 

d) means in said feedback network, and activated by an external 
signal, for switching said feedback network output between a voltage 
derived from a voltage output of said first control signal and a voltage 
derived from a current output of said first control signal. 

13 04714996 Dec 22 1987 395/619 Impact calculation for version 
Nov 26 1985 management in a distributed 

information service 
Inventor: Gladney; Henry M. et al. 
Assignee: International Business Machines Corporation 
Abstract: 

In a distributed processing system having a source node accessing data 
objects from a database and a replica node storing replicas of requested 
source data objects received from the source location, the impact to 
replicas caused by a change in a source data object is calculated by 
assigning a version number to the change. An identifier of the portion of 
the source database affected by the change is generated, as well as a list 
of replicas containing objects from the affected portion of the database. 
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(a) responsive to the change in the source data object, assigning a 
version number to the change and generating an identifier of a portion of 
the source database affected by the change; 

(b) responsive to said identifier, generating a list of replicas 
including objects from the affected portion of the source database; and 

(c) for a replica location in communication with the source location, 
recording a bad messages table of replicas in the list along with the 
version number assigned to the change for communication to the replica 
location. 

14 05274789 Dec 28 1993 395/416 Multiprocessor system having 
Feb 25 1991 distributed shared resources and 

dynamic and selective global data 
replication 

Inventor: Costa; Maria et al. 

Assignee: Bull HN Information Systems Italia S.p.A. 
Abstract: 

Multiprocessor system having distributed shared resources and 
dynamical and selective global data replication in which a plurality of 
processors communicate each with the other through a sytem bus. Each CPU 
is provided with a local memory storing data used locally and global data 
shareable by a plurality of processes operative in differing CPUs and 
therefore replicated in the local memory of each CPU. The global data 
replication is performed, at page level, only when a global data page is 
effectively needed by a plurality of processes operative in differing CPUs 
and in those CPUs where the page is needed, the replication in the other 
CPUs being performed in a predetermined trash page of the local memory so 
that memory space required for replication is minimized, as is traffic on 
the system bus for global data replication and global data writes required 
for assuring global data consistency. 
Exemplary Claim [1]: 

1 . A multiprocessor system having distributed shared resources and 
dynamic and selective global data replication, comprising: 

a system bus, and 

a plurality of CPUs, each CPU comprising: 
a processor, 
a local memory, 

a memory management unit (MMU) coupled to said processor for 
converting a virtual information page address generated by said processor 
into an address having a bit field which characterizes the address as 
either real and related to a page of global data which needs to be 
replicated to the local memory of all said CPUs or physical and related to 
a page of local data, 

an interface unit connected to said system bus and enabling the 
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each said trash page having a predetermined physical address, said trash 
page having a predetermined physical address, said address translation 
unit, in each of said CPUs, being initialized for converting a set of said 
real addresses into said predetermined trash page physical addresses, 

first logic means, said first logic means in a first CPU among said 
plurality of CPUs adapted to perform a page fault procedure in response to 
an indication of missing page generated by the said first CPU's MMU, and 
referencing said GSD table in said first CPU's local memory to detect if 
said missing page is valid in another CPU among said plurality of CPUs and 
stored in said another CPU's local memory and, when said missing page is 
found to be valid in a second CPU; 

allocating a physical page of said first CPU's local memory for 
storing said missing page, 

modifying the contents of said first CPU's address translation unit to 
reference said allocated physical page when a predetermined real address 
is used to reference said missing page, and 

requesting said second CPU to replicate said page, valid in said 
second CPU, as a global data page at said predetermined real address, and 

second logic means, said second logic means in said second CPU being 
responsive to said request from said first, CPU to copy said page valid in 
said second CPU at said predetermined real address as a global data page, 

whereby said page is replicated in a physical page other than said 
trash page, in a set of CPUs including said first CPU, where the address 
translation unit contents have been modified to reference a page other 
than said trash page, when said predetermined real address is received by 
the address translation unit of each CPU in said set. 

15 05627979 May 6 1997 395/335 System and method for providing a 
Jul 18 1994 graphical user interface for 

mapping and accessing objects in 

data stores 
Inventor: Chang; Daniel T. et a!. 
Assignee: International Business Machines Corporation 
Abstract: 

A graphical user interface for mapping and accessing objects in data 
stores is disclosed. A user may define a mapping between object schema and 
data store schema by use of a high level language, Schema Mapping 
Definition Language (SMDL), which is data store independent, object 
oriented language independent, and extensible. The user may either write 
SMDL directly or generate SMDL through the use of a graphical user 
interface Smart Schema whose graphical semantics support the SMDL 
semantics. A Schema Mapping Internal Representation (SMIR) containing 
representations of the object schema, the data store schema, and the 
mapping of the object schema and the data store schema is generated by an 
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Exemplary Claim [2]: 

2. A system for mapping and accessing objects in data stores, said 
system comprising: 

graphical user interface for defining a mapping between an object 
schema and a data store schema in a high level language; 

a first graphical user interface for mapping said object schema to 
said data store schema; 

a data structure for embodying said mapping, said data structure 
supporting said first graphical user interface and supporting a run-time 
access; 

high level language generator for generating, from said data 
structure, said high level language representing said mapping; 

a parser for parsing said high level language into said data 
structure; 

a translator for creating said first user interface representation of 
said mapping from said data structure; 

a second user interface, dependent upon an application programming 
interface, for accessing object data from said data store; 

said application programming interface, independent of said second 
user interface, for accessing object data from said data store; 

a run-time component executing said application programming interface 
and implementing said object data access from said data store; 

a data store access for said run-time component to utilize said data 
structure embodying said mapping definition in accessing said objects from 
said data store; and 

a generator for generating, from said data structure, an object 
oriented programming language and data access language for deleting, 
adding, retrieving, and updating objects from said data store. 

16 05550973 Aug 27 1996 395/182.08 System and method for failure 
Mar 15 1995 recovery in a shared resource 

system having a moving write lock 
Status: certificate of correction has been issued 
Inventor: Forman; Ira R. et al. 

Assignee: International Business Machines Corporation 
Abstract: 

The system and method of the present invention provides for recovery 
from failure of a distributed processing system process designated as a 
master process for at least one shared resource. The system of the 
invention provides for detection of the failure by one or more of the 
shadow processes. The detecting process tests to determine whether it has 
the shared write lock managed by the master process. If it does, it 
becomes the master process. If not, it determines from the shared control 
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determining, by the processing node requesting use of the write lock, 
whether the processing node requesting use of the write lock holds the 
write lock for the shared data object; 

when the processing node requesting use of the write lock holds the 
write lock, requesting that the processing node requesting use of the 
write lock assume control over the write lock for that shared data object 
from the master processing node failing to transfer use of the write lock 
for that shared data object to establish a new master processing node for 
that shared data object; 

when the processing node requesting use of the write lock does not 
hold the write lock for the shared data object, determining whether 
another processing node of the plurality of processing nodes holds the 
write lock for the shared data object; 

when the another processing node holds the write lock for the shared 
data object, requesting that the another processing node assume control 
over the write lock for that shared data object from the master processing 
node failing to transfer use of the write lock for that shared data object 
to establish a new master processing node for that shared data object; and 

when the another processing node fails to assume control of the write 
lock, executing a race among the plurality of processing nodes for control 
of the write lock for that shared data object from the master processing 
node failing to transfer use of the write lock for that shared data object 
to establish a new master processing node for that shared data object. 

17 05448727 Sep 5 1995 395/612 Domain based partitioning and 
Apr 30 1991 reclustering of relations in 

object-oriented relational 
database management systems 
Inventor: Annevelink; Jurgen 
Assignee: Hewlett-Packard Company 
Abstract: 

A system and method of logically and physically clustering data 
(tuples) in a database. The database management system of the invention 
partitions (declusters) a set of relations into smaller so-called local 
relations and reclusters the local relations into constructs called 
domains. The domains are self-contained in that a domain contains the 
information for properly accessing and otherwise manipulating the data it 
contains. In other words, the data objects stored in the domains may be 
stored in a particular domain based upon a local ity-of-reference algorithm 
in which a tuple of data is placed in a domain if and only if all objects 
referenced by the tuple are contained in the domain. On the other hand, 
the data objects stored in a domain may be clustered so that a tuple of 
data is placed in a domain based on the domain of the object referenced by 
a particular element of the tuple. By clustering the related object data 
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storage management means for partitioning said storage tables, in 
accordance with domain based relationships of said data objects, into a 
plurality of local tables and for clustering said local tables into 
domains comprising collections of said local tables, each of said domains 
comprising a collection of local tables for storing a collection of data 
objects and the domain based relationships of said collection of data 
objects to other data objects in said relational database. 

18 04525780 Jun 25 1985 395/490 Data processing system having a 
May 3 1 1984 memory using object-based 

information and a protection 
scheme for determining access 
rights to such information 

Inventor: Bratt; Richard G. et al. 

Assignee: Data General Corporation 

Abstract: 

A digital data processing system has a memory organized into objects 
containing at least operands and instructions. Each object is identified 
by a unique and permanent identifier code which identifies the data 
processing system and the object. The system uses a protection technique 
to prevent unauthorized access to objects by users who are identified by a 
subject number which identifies the user, a process of the system for 
executing a user's procedure, and the type of operation of the system to 
be performed by the user's procedure. An access control list for each 
object includes an access control list entry for each subject having 
access rights to the object and means for confirming that a particular 
active subject has access rights to a particular object before permitting 
access to the object. The system also includes stacks for containing 
information relating to the current state of execution of the system. 
Exemplary Claim [1]: 

1 . In a digital computer system including 

memory means for performing memory operations including storing and 
providing items of data, said items of data including instructions; 

processor means connected to said memory means for performing 
operations in response to said instructions including processing said 
items of data; 

memory organization means operative on said memory means for 
organizing said memory means into objects identified by unique identifiers 
and allowing the location of said items therein, each said item being 
associated with an object and addressable by a logical address specifying 
the unique identifier of the object with which said item is associated and 
an offset specifying the location of said item its associated object, 

said memory organization means further identifying for each one of 
said objects a selected set of subjects representing entities for which 
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19 05335346 Aug 2 1994 395/609 Access control policies for an 

Dec 12 1991 object oriented database, 

including access control lists 
which span across object 
boundaries 

Inventor: Fabbio; Robert A. 

Assignee: International Business Machines Corporation 
Abstract: 

The system and method of this invention provides an access control 
list which spans across object boundaries in an object oriented database. 
In addition to providing read and write access permissions, the access 
control list provides execute semantics which apply to the execution of 
methods in an object oriented database. Within the entries of the access 
control lists, each of the permissions for read, write, and execute can be 
assigned separately to each of a number of ids representing user ids or 
group ids. Upon request for access to the data by the user, the user id of 
the user and the group ids for which the user is a member are searched for 
within the entries to determine whether the user has the privileges to 
perform the operation requested against the objects. In addition, the 
access control policies are inherited from an object's superobject; 
resulting in a least privilege for the object. 
Exemplary Claim [1]: 

1. A method for controlling access privileges to data, said method 
comprising: 

assigning at least one access control policy associated with a 
plurality of dynamically assignable groups across a plurality of 
dynamically extendable external objects in an object oriented database; 

traversing objects to dynamically extend access control policies to 
encompass a newly extended object; 

controlling a plurality of operations including an execute operation 
applied to execution of a plurality of methods to at least one of said 
plurality of dynamically extendable objects based on said assignment and 
at last one credential of a user requesting access to said data 
represented by at least one of said plurality of dynamically extendable; 
and 

inheriting said assigned at least one access control policy by a 
second of said external objects descending from said at least one object; 
said inheriting further including determining a least amount of privilege 
associated with at least one composite object accessed by said user. 

20 04498132 Feb 5 1985 395/490 Data processing system using 

May 22 1981 object-based information and a 

protection scheme for determining 
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process of the system for executing a user's procedure, and the type of 
operation of the system to be performed by the user's procedure. An access 
control list for each object includes an access control list entry for 
each subject having access rights to the object and means for confirming 
that a particular active subject has access rights to a particular object 
before permitting access to the object. The system also includes stacks 
for containing information relating to the current state of execution of 
the system. 

Exemplary Claim [34]: 

34. In a digital computer system including processor means for 
performing operations on operands and memory means for storing 
instructions for controlling said processor means, said memory means being 
organized into objects for containing said operands and instructions, said 
processor means comprising; 

means for uniquely identifying said objects, including 

memory organizing means responsive to first instructions for 
designating locations in said memory means as objects for containing items 
of information, and 

means for generating unique identifier codes, a unique idendifier code 
being uniquely and permanently associated with a corresponding object 
generated by said processor means, 

means for addressing said operands comprising: 

name table means for storing name table entries, each name table entry 
corresponding to a name of a procedure and each name table entry 
comprising data resolvable to provide a location in said memory means of 
an operand referred to by said corresponding name, and 

means responsive to said names for resolving each name table entry so 
as to provide outputs to said memory means representing locations in said 
memory means of said operands, 

protection means for preventing a user, currently using said digital 
computer system to execute a program comprising a procedure object 
containing selected instructions, from obtaining unauthorized access to 
selected objects, including: 

subject number memory means responsive to the operation of said 
processor means for storing a currently active subject number of a 
plurality of subject numbers, 

each subject number corresponding to one of a plurality of subjects 
wherein each subject comprises the combination of (1) a user of said 
digital computer system, (2) a process of said digital computer system for 
executing a procedure of said user, and (3) the type of operation to be 
performed by said digital computer system in response to an instruction of 
a procedure of said user, and 

said currently active subject number identifies the user currently 
utilizing said digital computer system, (2) a process currently executing 
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ALU means for performing operations directed by said instructions. 

first microcode means for storing first selected sequences of 
microinstructions for controlling operations of said ALU means directed by 
said instructions, said instructions being S-Language instructions having 
a uniform, fixed format, 

said first microcode means responsive to said instructions to provide 
corresponding first selected sequences of microinstructions to said ALU 
means, and 

second microcode means connected to said bus means for storing second 
selected sequences of microinstructions for controlling internal 
operations of said processor means, 

said second microcode means responsive to the operation of said 
processor means to provide said second selected microinstruction sequences 
to said ALU means. 

21 05412806 May 2 1995 395/602 Calibration of logical cost 
Aug 20 1992 formulae for queries in a 

heterogeneous DBMS using synthetic 
database 

Inventor: Du; Weimin et al. 
Assignee: Hewlett-Packard Company 
Abstract: 

A programmable machine system and method for managing electronic data 
access among multiple different relational databases in a network 
distributed database environment. The machine is programmed so that it can 
construct cost-effective access strategies for any of the participating 
databases absent any DBMS-specific cost models. The system provides query 
optimization across different database management systems in a network 
distributed database environment based on a calibrating database relying 
only on typical relational database statistics and cost data is developed 
by running queries in the various databases against the calibrating 
database. A logical cost model is constructed using the resulting cost 
data and is used to estimate the cost of a given query based on logical 
characteristics of the DBMS, the relations, and the query itself. The cost 
of a complex query is estimated using primitive queries. Optimal query 
access strategies are thereby designed and used to control execution of 
the queries across relational databases controlled by two or more 
different database management systems. 
Exemplary Claim [1]: 

1 . A database access system for optimizing database queries in a 
heterogeneous distributed database system, the system comprising: 

a first database machine incorporating a first relational database 
management system and accompanying first database; 

a second database machine incorporating a relational database 
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means for querying the synthetic data base on each database machine to 
determine cost coefficients for use in said logical costs formula to 
calibrate the data access logical cost model: and 

means responsive to a database query for accessing each of the first 
and second databases of said first and second database machines in 
accordance with a least cost index obtained from said data access logical 
cost model. 

22 05463733 Oct 31 1995 395/182.08 Failure recovery apparatus and 
Aug 8 1994 method for distributed processing 

shared resource control 
Inventor: Forman; Ira R. et al. 

Assignee: International Business Machines Corporation 
Abstract: 

Communicating the failure of a master process controlling one or more 
shared resources to all process sharing the resources. A shared resource 
control file is established that contains the identities of all sharing 
processes. Master process failure triggers a race to establish exclusive 
access over the shared control file. The new master reads shadow address 
data from the old shared control file, marks it as invalid and establishes 
a new control file based on renewed registrations from the sharing 
processes. The master process maintains the sharing process list as 
processes begin and end sharing. 
Exemplary Claim [1]: 

1. A method for managing recovery of a distributed processing system 
in which shared resources are each controlled by a master process, the 
distributed processing system having a plurality of processors each 
executing a plurality of processes and each controlled by a separate 
operating system, each of said processors having memory, and each of said 
processors interconnected to the other processors by means of a 
communications network, the method comprising the steps of: 

detecting failure of a master process for a shared resource; 

requesting exclusive access to a control file using a network file 
system management procedure independent of said operating system for said 
processors, if said detecting step detects a failure; 

establishing exclusive access to said control file using said network 
file system management, if said exclusive access request is granted; 

determining from said control file all other processes accessing said 
shared resource; 

invalidating said control file; 

sending a message to each of said other processes indicating failure 
of said master process; and 

creating a new control file and entering data for each process 
responding to said message. 
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their capabilities for providing: a generic data structure consisting of 
two generic data elements and a generic data set array, indentured data 
set relationships, inversion of data set relationships, dynamic 
reorganization of data sets, control over the data relationships that can 
be established, global linking of data sets, and automatic connection 
projection. A database structure which is independent of the type of data 
being managed is established, and the data is entered into a single file 
in which the data is automatically logically and physically ordered. 
Exemplary Claim [1]: 

1 . A method of employing a computer with input means, memory, and a 
data processing unit to manage data, said method comprising the steps of: 

employing said computer to create an original array of data sets, each 
said data set having a data type element for differentiating one kind of 
subject matter from another and a data value element for differentiating 
data sets with the same data type element and said array containing a key 
data set and data sets related to said key data set; 

employing said computer to link the related data sets in a hierarchy 
in which the related data sets are each in an indentured relationship to 
the key data set; 

so employing the computer to invert the relationship between an 
indentured data set in the original array and the remaining data sets in 
said array as to create an inverted data set array having: (a) the data 
set entered in the original array as its key data set, and (b) all data 
sets higher in the hierarchy of the original data set linked to that key 
data set in inverted order; and 

storing the original and inverted data set arrays in the memory of the 
computer. 

24 04995112 Feb 19 1991 380/25 Security system 

Jun30 1989 
Inventor: Aoyama; Mitsunobu 
Assignee: Kabushiki Kaisha Toshiba 
Abstract: 

In a distributed processing system having a plurality of nodes, a 
correspondence table, which represents a correspondence between the nodes 
and corresponding passwords that grant access to the nodes, stored in a 
disk device. Each of the nodes includes a passthrough device which permits 
passthrough of access request data to a node of the next hierarchical 
level. Upon receipt of access request data, the passthrough device refers 
to the correspondence table to check a password contained in the received 
access request data for validity of access to the node. When the password . 
is valid, the passthrough of the access request data is permitted. 
Exemplary Claim [1]: 

1. A security system for use in a distributed processing system having 
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25 05526524 Jun 1 1 1996 395/726 Method and system for management 
Dec 23 1993 of locked objects in a computer 

supported cooperative work 
environment 
Status: certificate of correction has been issued 
Inventor: Madduri; Hari H. 

Assignee: International Business Machines Corporation 
Abstract: 

A method and system for efficiently managing access to multiple 
objects which are stored within a distributed data processing system 
wherein access to those objects may be selectively locked by one of the 
users enrolled within the distributed data processing system. Each time 
access to an object within the distributed data processing system is 
attempted, the lock status of that object is determined. If access to the 
object is not locked, access is granted to the requesting user. However, 
if access to the object is currently locked, the identity of each 
requesting user is stored within a "camp-on" table within the distributed 
data processing system. Next, the lock status of the object is determined. 
This may be accomplished by detecting the release of an object by a user 
who has previously locked that object or by periodically checking the lock 
status of all objects. When the lock status changes, an audible or visual 
notification is automatically transmitted to each user who has requested 
access to that object, greatly enhancing the efficiency of access 
management to objects stored within a distributed data processing system. 
Exemplary Claim [1]: 

1. A method in a distributed data processing system having a plurality 
of objects stored therein to which access may be selectively locked by one 
of a plurality of users enrolled within said distributed data processing 
system, for efficiently managing access to said plurality of objects, said 
method comprising the data processing system implemented steps of: 

determining a lock status for an object stored within said distributed 
data processing system in response to an attempted access of said object 
by a selected user within said distributed data processing system; 

granting access to said object by said selected user in the event 
access to said selected object is not locked; and 

in the event access to said object is locked: 

determining if said selected user has requested a "camp-on" for said 
object; 

notifying said selected user that said object is locked if said 
selected user has not requested a "camp-on" for said selected object; 
if said selected user has requested a "camp-on" for said selected 
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a parallel or distributed database system. A Local Index is created and 
maintained for each partition of the table and a Coarse Global Index is 
created and maintained. The Coarse Global Index identifies the indexed 
partition(s) by partition identifiers (PIDs) and associates the individual 
Index Key Values with their target partitions so that an access request 
with a highly partition-selective search predicate on the Index Key can be 
quickly and easily directed to the target partition(s) for processing. An 
index maintenance locking protocol is also disclosed which handles the 
insertion and deletion of index entries and assures the consistency 
between the Local Index entries and the Coarse Global Index entries during 
concurrent index accesses by different transactions. The locking protocol 
minimizes locking only to those cases involving an inserted or deleted key 
and to the key following and possibly the key preceding the inserted or 
deleted key to allow high concurrency between simultaneous Readers, 
Inserters, and Deleters. This method enhances the efficiency of complex 
query evaluation and index maintenance and attains a high throughput for 
transaction processing. 
Exemplary Claim [1]: 

1 . A method for maintaining consistency between a second index table 
and a first index table in a multi-tiered index structure to handle the 
insertion of an index entry into a unique index, the multi -tiered index 
structure including a respective second index table of index key values 
corresponding with each respective partition of a partitioned database and 
a first index table containing at least one unique first index entry for 
each index key value in each of the respective second index tables, 

i) wherein the second index table has a second index identifier and 
contains second index entries, each of the second index entries having an 
identifier which identifies an object in the respective database partition 
corresponding with the second index table, and having a second index key 
value which relates to the identified object, at least some of the index 

key values being distinct, and 

ii) wherein the first index table has at least one first index entry 

for each distinct one of the second index key values in each second index 
table, each of the first index entries having a second index identifier 
which identifies a second index table, and having a first index key value 
which relates to one of the second index key values in the identified 
second index table, 
the method comprising the computer-implemented steps of: 

A) determining if the second index key value in the index entry to be 
inserted is already present in the second index table; 

B) if the second index key value in the index entry to be inserted is 
already present in the second index table, then rejecting the insertion; 
and 
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ii) a second index identifier identifying the second index table. 

27 05241673 Aug 31 1993 395/614 System for garbage collecting 
Oct 1 1990 unused memory space represented by 

a digraph by assigning values of 

node identifiers to selected 

variables based upon predetermined 

conditions 
Inventor: Schelvis; Marcellinus A. J. 
Assignee: Oce-Nederland B.V. 
Abstract: 

A method of distributing status information is described, regarding a 
digraph in a logically organized system of groups of entities related to 
each other and to be represented by digraphs, and a device for using such 
a method. In a system which comprises a number of groups which may be 
represented by digraphs, the lacking of a node having a particular status 
in a group is detected by the method. When applying the method to a 
distributed object-oriented system, in which a root is such a node having 
a particular status, incremental distributed garbage collection is 
realized. The invention is also effective in the case in which cycles or 
subcycles occur in graph of objects referring to each other. Upon 
realizing garbage collection, inaccessible data information occupying 
memory space is removed from memory to thereby free previously occupied 
memory space. 
Exemplary Claim [1]: 

1. A method of garbage collecting inaccessible information to reclaim 
memory space previously occupied in a memory of a logically organized 
computer network system including an assembly of groups of related 
entities, each of the groups being represented by a digraph without 
subcycles and each of the entities being represented by a node of the 
digraph, by distributing status information regarding the digraph over 
each of the nodes of the digraph, in which an identifier of a unique value 
is associated with each node, per digraph, and in which a set of elements 
is associated with each node not having a particular status, each element 
representing a variable which is coupled separately to an immediate 
predecessor of the associated node, the method comprising the steps of: 

(a) assigning the value of the identifier of a node having a 
particular status to each variable coupled to the node; 

(b) assigning the value of the identifier of a node without a 
particular status to each variable which is coupled to the node if the 
identifier satisfies a predetermined comparison criterion with respect to 
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by the exchange of access control 
profiles 

Inventor: Janis; Frederick L. 

Assignee: International Business Machines Corporation 
Abstract: 

A method is disclosed for providing user access control for a 
plurality of resource objects within a distributed data processing system 
having a plurality of resource managers. A reference monitor service is 
established and a plurality of access control profiles are stored therein. 
Thereafter, selected access control profiles are exchanged between the 
reference monitor service and a resource manager in response to an 
attempted access of a particular resource object controlled by that 
resource manager. The resource manager may then control access to the 
resource object by utilizing the exchanged access control profile. In a 
preferred embodiment of the present invention, each access control profile 
may include access control information relating to a selected user; a 
selected resource object; a selected group of users; a selected set of 
resource objects; or, a predetermined set of resource objects and a 
selected group of users. 
Exemplary Claim [1]: 

1. A computer implemented method of providing user access control for 
a plurality of resource objects within a distributed data processing 
system having at least one reference monitor service and a plurality of 
resource managers associated with said plurality of resource objects, each 
of said plurality of resource managers controlling access to different 
selected ones of said resource objects, each of said resource managers 
associated with a reference monitor service, said method comprising the 
computer implemented steps of: 

storing a plurality of unique access control profiles within each said 
reference monitor service, wherein selected ones of said plurality of 
access control profiles each include access control information relating 
to a predetermined set of said resource objects and a selected list of 
users each authorized to access at least a portion of said predetermined 
set of resource objects; 

querying an associated reference monitor service by a selected one of 
said resource managers in response to an attempted access of a particular 
resource object among said plurality of resource objects, wherein access 
to said particular resource object is controlled by said selected resource 
manager; 

transmitting a selected access control profile associated with said 
particular resource object from said associated reference monitor service 
to said selected one of said resource managers if said selected access 
control profile existed in said associated reference monitor service; if 
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A system and method for maintaining linked data structures stored in a 
computer system capable of processing the stored data as addressable 
object nodes, such that any data object node may be modified prior to the 
completion of outstanding read only accesses to that node. The system and 
method maintain an access vector for each node. The access vectors include 
an access counter which counts the number of read only accesses from a 
present node to the next node, and a link pointing to a next node. The 
number of read only accesses in effect for a node is the sum of access 
counts of all access vectors pointing to that node, minus the AD J and 
minus the sum of access counts of all access vectors with access to that 
node. A node in the list can be replaced or deleted by first changing the 
pointers of all nodes that point to the node to point to a new one. Then, 
modifying the access count of the node by subtracting the maximum value of 
the access counts pointing to the node from the count in the node. Read 
only accesses out of the node continue to increment the access count, and 
when it reaches zero the node can be deleted. Because the pointers to the 
node had been changed, read only processes can continue without pausing 
for the change or replacement event. 
Exemplary Claim [1]: 

1 . A computer implemented method for maintaining a linked data 
structure stored in a computer system capable of processing the stored 
data as addressable object nodes, such hat any node may be modified prior 
to the completion of outstanding read only accesses to said any node, 
comprising the steps of: 

maintaining an access vector for each of the nodes, each access vector 
including an access counter for maintaining an access count value 
corresponding to how many processes have read access to a first node, and 
a link for maintaining a pointer to a next node; 

adding one or more links to the data structure, wherein when a link 
associated with an access vector is added to point to a second node, the 
value of the access count of the second node and the value of the access 
counts of all nodes indirectly pointed to by the added link are 
incremented by the value of the access count of the access vector 
associated with the added link; 

deleting links from the data structure, wherein when a link associated 
with an access vector is deleted from a third node, the value of the 
access count of the third node and the value of the access counts of all 
nodes previously indirectly pointed to by the deleted link are decreased 
by the value of the access count of the access vector associated with the 
deleted link; and 

deleting nodes by: 

deleting all links to a fourth node, 

waiting until an access count for said fourth node becomes zero, said 
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node writes to an address in the second section of a data store the 
written data is communicated to all of the nodes via the data link. The 
data in each address of the second sections of the data stores can be 
changed only by one respective processing node which acts as a master for 
that address. As each address containing shared data can only be written 
to by one node collisions between different nodes attempting to change a 
common item of data cannot occur. 
Exemplary Claim [1]: 

1 . A real-time data processing system, comprising at least two 
processing nodes, a local data store in respect of each processing node, 
each local data store being partitioned into sections a first one of which 
is reserved for the storage of non-shared data local to the respective 
processing node and a second one of which is reserved for the storage of 
data to be shared between processing nodes, a data link interconnecting 
the processing nodes, generating means at each processing node for 
generating a read/write message including an address and data to be 
written to that address whenever that processing node writes to an address 
in the second section of the local data store, transmitting means for 
transmitting each generated write message via the data link to each of the 
processing nodes, allocating means for allocating to each address in the 
second sections of the local data stores a respective processing node 
which is to be a master processing node for that address, preventing means 
for preventing data being written to any address in the second section of 
a local data store other than by the allocated master processing node, 
said allocating an preventing means including an address range comparator 
in respect of each processing node for comparing the address of a data 
write message generated by that processing node with a preset range of 
addresses and for transferring the data write message to the data link 
only if the compared address is within the preset range, each processing 
node including a latch into which each data write message is loaded, a 
first in first out register connected to the output of the latch, a 
detector for detecting a successful writing of data to the data store 
local to the processing node, an AND gate connected to the detector and 
address range comparator and controlling the latch such that the content 
of the latch is transferred to the register when the compared address is 
within range and successful writing of data is detected, and a transmitter 
connected to the register for transmitting messages stored in the register 
over the data link. 

31 05072373 Dec 10 1991 395/200.31 Real-time data processing system 

Jan 17 1991 
Inventor: Dann; James C. 
Assignee: Encore Computer U.S., Inc. 
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1 . A method of reflecting data among a plurality of processing nodes 
interconnected through a reflective data link, comprising the steps of: 

establishing for each node a memory having a first data port and a 
second data port and having a set of addresses; 

establishing for each node processing means connected to said first 
data port of the associated memory for reading data from said memory and 
for writing data into said memory; 

sensing write data from the processing means of a node to the first 
data port of the associated memory that is being written into preselected 
addresses of said associated memory, and 

forwarding said sensed write data directly into said data link for 
reflection into the memories of other processing nodes interconnected 
through the data link, 

sensing write data on said data link being written into preselected 
addresses of memory, and 

forwarding said sensed write data from said data link directly into 
the associated memory of a node through the second data port of the 
memory. 

32 05581732 Dec 3 1996 395/475 Multiprocessor system with 
Oct 13 1993 reflective memory data transfer 

device 

Inventor: Dann; James C. 

Assignee: Encore Computer, U.S., Inc. 

Abstract: 

A real time data processing system in which each of a series of 
processing nodes is provided with its own data store partitioned into a 
first section reserved for the storage of data local to the respective 
node and a second section reserved for the storage of data to be shared 
between nodes. The nodes are interconnected by a data link and whenever a 
node writes to an address in the second section of a data store the 
written data is communicated to all of the nodes via the data link. The 
data in each address of the second sections of the data stores can be 
changed only by one respective processing node which acts as a master for 
that address. As each address containing shared data can only be written 
to by one node collisions between different nodes attempting to change a 
common item of data cannot occur. 
Exemplary Claim [1]: 

1. A processing system comprising: 

plural processing nodes, each node comprising a node memory having a 
portion of which constitutes a shared store, and a data write means for 
writing data to the node memory; 

data reflecting means for reflecting data written by a first data 
write means of a first node to the shared store of said first node and 
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system. The strategy is especially well adapted for use within the 
distributed environment. The strategy verifies that proper reconciliation 
of name spaces has occurred via multi-master replication. The strategy 
also verifies that the correct propagation of knowledge of changes to 
objects has occurred during replication. 
Exemplary Claim [1]: 

1. In a computer system having a storage with a name space containing 
logical structures and a multi-master replication facility for replicating 
said logical structures, a method for verifying proper operation of said 
replication facility, comprising the computer-implemented steps of: 

providing a testing tool for verifying proper operation of said 
replication facility; 

the testing tool making changes to selected ones of said logical 
structures within the name space at a first location in said computer 
system; 

the testing tool logging information about said changes in a log held 
in said storage; 

the replication facility replicating said selected logical structures 
to a second location in said computer system; and 

the testing tool verifying that said changes to said selected logical 
structures were properly replicated to said second location in said 
replicating step to verify proper operation of said replication facility 
by examining the logged information in the log. 

34 04731734 Mar 15 1988 395/412 Digital computer system 

Feb 14 1986 incorporating object-based 

addressing and access control and 
tables defining derivation of 
addresses of data from operands in 
instructions 

Inventor: Gruner; Ronald H. et al. 

Assignee: Data General Corporation 

Abstract: 

A digital computer system having a memory system organized into 
objects for storing data and a processor for processing data in response 
to instructions. An object identifier and an access control list are 
associated with each object. The memory system responds to logical 
addresses for data which specify the object containing the data and the 
offset of the data in the object and to a current subject for which the 
processor is referencing the data. The memory system performs a memory 
operation for the processor only if the access control list for the object 
specified by the logical address allows the current subject to perform the 
desired memory operation. The objects include procedure objects and data 
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of said data items in said memory means, each object being identifiable by 
an object identifier; 

access control means for identifying for each object a set of subjects 
which are permitted to access the data items in said object and for 
identifying for each subject a specified set of memory operations which 
each said subject is permitting to perform; 

means responsive to said access control means and to a request from a 
current subject for access to a current data item in an object and for the 
performance of a current memory operation for determining whether said 
current subject is a subject which is permitted to access said current 
data item and whether said current memory operation is one which said 
current subject is permitted to perform; 

memory oepration means responsive to a memory operation specifier 
which includes 

a logical address specifying an object identifier and a location in 
the object identified by said object identifier, and 

a memory command specifying a current memory operation, 

and further responsive to a request from a current subject for 
performing a current memory operation specified by said memory command 
when said determining means determines that said current subject is one 
having permission to access the object specified by said logical address 
and to perform said current memory operation, 

and further wherein said instructions include 

operation codes specifying operations, including memory operations, of 
said digital computer system, certain instructions further including 

a name representing a data item to be used in an operation specified 
by an operation code, and 

said system further includes 

means for storing a plurality of name table entries each name table 
entry corresponding to a data item and to the name representing said data 
item and each name table entry including information from which the 
logical address of the data item represented by the name corresponding to 
said name table entry can be derived, and 
processor means connected to said memory means and including 
means for providing instructions from said memory means, 
instruction decoding means responsive to instructions from said 
instruction providing means for decoding a current instruction to provide 
one or more names therein, 

logical address generation means responsive to the information in a 
name table entry corresponding to a name for deriving a logical address 
from said information, said logical address generating means including 

name resolution means responsive to a name in said decoded instruction 
and to the information in the name table entry corresponding to said name 
for generating the logical address for the data item represented by said 
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The following is a method and apparatus for administering an operation 
specified for performance on a set of independently managed hosts. The 
operation is received initially by one of a plurality of management 
servers in a managed host system. The operation, specifying a group 
object, is transferred to the management server designated by the system 
to administer the operation specified on the group object. The designated 
management server thereafter decomposes the group object into constituent 
objects which may be host objects or additional group objects. Next, the 
locally administered objects are scheduled for execution on the hosts 
administered by the designated management server. The non- locally 
administered objects are transferred to the management servers identified 
in a database for administering the objects. After executing the operation 
on the host objects, the host objects and group objects return status 
information back to the designated management server. The status 
information is then transmitted to the management server that initially 
received the operation. 
Exemplary Claim [1]: 

1 . A method for administering an operation on a network of computer 
systems, said network of computer systems having a plurality of management 
servers for administering objects, a first group object having a first 
plurality of constituent objects and a second group object having a second 
plurality of constituent objects, said method comprising the steps of: 

creating a name space containing a list of all objects including said 
first group object, said second group object, each of said first plurality 
of constituent objects and each of said second plurality of constituent 
objects, said list identifying said first plurality of constituent objects 
as belonging to said first group object and identifying said second 
plurality of group objects as belonging to said second group object; 

identifying in said list an associated one of said plurality of 
management servers for administering each of said first group object, said 
second group object, each of said first plurality of constituent objects 
and each of said second plurality of constituent objects; 

generating an operation that is directed to a first target object 
selected from the group consisting of said first group object and said 
second group object, said operation comprising at least one sub-operation 
directed to a second target object selected from the group consisting of 
said first group object, said second group object, each of said first 
plurality of constituent objects and each of said second plurality of 
constituent objects, said second target object being different from said 
first target object; 

receiving said operation at the management server identified in said 
list as administering said first target object; 

transferring said operation to said first target object for execution; 
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said list, generating static access modules, creating a secondary data 
model in a pre-built machine executable format and storing the data model. 
In the execution stage accessing the secondary data model and manipulating 
data values using the secondary data model. 
Exemplary Claim [1]: 

1 . In a computer system in which one or more data files containing 
specific instances of data of interest to a user application are accessed 
using a data model defining said files to the application, said computer 
system having a main memory and a permanent storage subsystem, a method of 
accessing said one or more data files comprising the steps of: 

generating a data model defining said one or more data files to said 
application as a single loadable object transferable from said storage 
subsystem to said main memory in a single data access to said storage 
subsystem; 

caching said data model as a single loadable object in said main 
memory; and 

using said data model cached in said main memory to access said one or 
more data files from said application. 

37 05255369 Oct 19 1993 395/200.44 Multiprocessor system with 

Sep 11 1991 reflective memory data transfer 

device 

Inventor: Dann; James C. 

Assignee: Encore Computer U.S., Inc. 

Abstract: 

A real time data processing system in which each of a series of 
processing nodes is provided with its own data store partitioned into a 
first section reserved for the storage of data local to the respective 
node and a second section reserved for the storage of data to be shared 
between nodes. The nodes are interconnected by a data link and whenever a 
node writes to an address in the second section of a data store the 
written data is communicated to all of the nodes via the data link. The 
data in each address of the second sections of the data stores can be 
changed only by one respective processing node which acts as a master for 
that address. As each address containing shared data can only be written 
to by one node collisions between different nodes attempting to change a 
common item of data cannot occur. 
Exemplary Claim [1]: 

1 . A data processing system comprising a plurality of nodes and a data 
bus interconnected therewith, 

at least one processing node comprising: 

a dual port local data store partitioned into sections, a first 
section reserved for the storage of data local to the node and not to be 
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successful write detector means for detecting the presence of a 
successful write signal on the local bus; 

first latch means for holding data transmitted by the processor on the 
local bus; 

first gate means for receiving signals from the first address 
comparator means and the successful write detector means and for 
activating the first latch means upon receipt of signals indicating the 
address is within the first range of allowable addresses and a successful 
write to memory has occurred; 

first FIFO register means for receiving data from the first latch 
means responsive to activation of the first gate means; 

bus request logic means for generating a bus request signal to 
transmit data stored in the first FIFO register means along the data bus 
and for releasing data from the first FIFO register means upon receipt of 
a bus grant signal from another node designated as master node; 

transmitter means for receiving data from the first FIFO register 
means and transmitting the data along the data bus to other nodes 
responsive to receipt of the bus grant signal by the bus request logic 
means; 

receiver means for receiving signals from the data bus; 

data valid detector means for detecting the presence of a data valid 
signal on the data bus; 

second address comparator means for receiving an address of a signal 
received by the receiver means and determining if the address is within a 
second range of allowable addresses for shared data; 

second latch means for holding data signals received by the receiver 
means; 

second gate means for receiving signals from the data valid detector 
means and the second address comparator means and for activating the 
second latch means upon receipt of signals indicating the address is 
within the second range of allowable addresses and a valid data signal was 
received by the data valid detector means; 

second FIFO register means for receiving data from the second latch 
means responsive to activation of the second latch means; 

memory transfer request means for generating a signal requesting 
access to the local data store through the second port of the local data 
store and for releasing data from the second FIFO register means to the 
local data store upon receipt of a signal granting access to the local 
data store. 

38 04774661 Sep 27 1988 395/603 Database management system with 

Nov 19 1985 active data dictionary 

Inventor: Kumpati; Murari 
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I, A dmtae ;rarageei.efit system whi&h rums on & ctdnpufigr servi®! a 
plurality of users and which interfaces a plurality of user application 
programs to a database for managing sets of data stored on said database 
comprising: 

data dictionary means for specifying relationships between each of 
said user application programs and said sets of said data stored in said 
database associated with each of said user application program; 

data model means for controlling the definition of the specified 
relationships of said data dictionary; 

query means responsive to change commands from a user application 
program for modifying said data model; 

wherein said query means includes means responsive to said change 
commands for changing said data dictionary to correspond to said data 
model changes; and 

said query means further includes means responsive to a data request 
from said user application program for accessing the requested sets of 
said data from said database. 

39 05544353 Aug 6 1996 395/608 Distributed processing object 
Jun 14 1993 shared resource control apparatus 

and method 
Inventor: Forman; Ira R. et al. 

Assignee: International Business Machines Corporation 
Abstract: 

A system and method for determining a master process for control of a 
shared system resource. The improved system requires the master process to 
hold exclusive access on a shared resource control file only 
intermittently. The master process periodically updates the shared 
resource control file with a new timestamp. Processes seeking resource 
access read the shared control file and determine whether another process 
has been designated master. If the interval since the latest timestamp is 
greater than a preset staleness interval, the shared control file is 
discarded and a new one created by the accessing process. 
Exemplary Claim [1]: 

1. A method of determining a master process for control of a shared 
resource in a computer system having a plurality of processes operating on 
at least one processor that has a memory and access to a shared data 
storage means, the method comprising: 

testing said shared data storage means for the presence of a shared 
resource control file for said shared resource; 

if no file exists, creating a shared resource control file in said 
shared data storage means, writing master process identification 
information to said shared resource control file, and writing a timestamp 
to said control file; 

if a file exists, requesting exclusive access to said file; 
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40 05313629 May 17 1994 395/614 Unit of work for preserving data 
Oct 23 1989 integrity of a data-base by 

creating in memory a copy of all 
objects which are to be processed 
together 

Status: certificate of correction has been issued 
Inventor: Abraham; Robert L. et al. 
Assignee: International Business Machines Corporation 
Abstract: 

A Unit of Work object class for an object oriented database management 
system provides concurrent processing through Unit of Work levels and 
instances while maintaining the integrity of the data in the database. 
Each new Unit of Work assigned to a task is an instance of the Unit of 
Work object class. A Unit of Work manager controls each step such that 
manipulation of the data occurs to the copies at that particular level for 
that particular instance. Only after all levels have been completed 
satisfactorily will a "Commit" occur to the data in the database. If 
completion is not satisfactory, Rollback of the levels occur, thus 
preserving data integrity. The Unit of Work manager can also switch 
control between Unit of Work instances, thus permitting simultaneous 
performance of tasks. 
Exemplary Claim [1]: 

1 . An object management system for an object oriented computing system 
executing on a data processing system, said object oriented computing 
system including a plurality of objects which are stored in nonvolatile 
storage and which are processed in volatile storage, each object including 
an object frame containing data attributes, and at least one object method 
for performing actions on the associated object, said object management 
system comprising: 

a unit of work object class including a unit of work object frame 
containing pointers to objects which are processed together by said object 
oriented computing system, and including a first method for loading said 
objects which are processed together from nonvolatile storage to volatile 
storage, a second method for storing said objects which are processed 
together from volatile storage to nonvolatile storage, and a third method 
for generating in volatile storage a copy of said objects which are 
processed together in volatile storage, said unit of work frame further 
including pointers to said copy of said objects which are processed 
together; and 

means, responsive to a request to process selected ones of said 
plurality of objects together, for generating an instance of said unit of 
work object class, said instance of said unit of work object class 
including a pointer to each selected object, such that said selected 
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scheme for determining access 

rights to such information 
Inventor: Bratt; Richard G. et al. 
Assignee: Data General Corporation 
Abstract: 

A digital data processing system has a memory organized into objects 
containing at least operands and instructions. Each object is identified 
by a unique and permanent identifier code which identifies the data 
processing system and the object. The system utilizes unique addressing 
mechanisms the addresses of which have object fields, offset fields and 
length fields for specifying the location and the total number of bits of 
an addressed object. The system uses a protection technique to prevent 
unauthorized access to objects by users who are identified by a subject 
number which identifies the user, a process of the system for executing 
the user's procedure, and the type of operation of the system to be 
performed by the user's procedure. An access control list for each object 
includes an access control list entry for each subject having access 
rights to the object and means for confirming that a particular active 
subject has access rights to a particular object before permitting access 
to the object. 
Exemplary Claim [1]: 

1 . In a digital computer system including processor means for 
performing operations on operands, memory means for storing operands and 
instructions for directing said operations, said memory means being 
organized into objects for containing operands and instructions, bus means 
for conducting operands and instructions between said memory means and 
said processor means, and I/O means for conducting operands between said 
digital computer system and devices external to said digital computer 
system, said processor means comprising: 

ALU means connected to said bus means for performing said operations, 

addressing means connected to said bus means for providing addresses 
for controlling the transfer of operands and instructions between said 
memory means and said processor means, each of said addresses comprising 

an object field for identifying an object, 

an offset field for specifying a first number of information bits of 
offset relative to the start of said object, and 

a length field for specifying an second number of information bits of 
said object following said first number of information bits to be 
transferred between said memory means and said processor means, 

and 

microcode control means for storing sequences of microinstructions for 
controlling said processor means and responsive to said instructions for 
providing said sequences of microinstructions to said processor means, 



si-id ALU m^m ii^Ming 

BeftemJ pspsfcer file tn&tetvs ^jmim^ted to said him mffim for sitiflirtg 
detected sjperasdsi &mf &Mm%% 

said gsresna! rejpster ilk tom comprising i% plurality of vertically 
offeed regisim; verfelly divided fate* <fu*e W ni»I Fel -opmw Irm and 

^ first part; of s&id jpntiftl Kgpsttr fife tfttfite amplsiiii ftm 
reiser tlte means ifer storiing #j«*rt Itelds Of mid ag&esstig,, 

a second pad- dfsaM iett^l register lite wto&m apprising, s-wind 
register tile rtiOTS for sSorriig offeg fields sf Md tsWr^sc* and said 
wpgrandS:, ®d 

a t&iid ptiH- of saM Sfcofctal registtsr .(lie mt^n* <&*f!t#iiiitt& third 
regfe^r file i^rais for storiijig tafii. tkli of mM ^Mm^m* \m$ 

-address ALU itksppis roranecM to s&M geperol register file ifieariis spmd Id 
said bus means and responsive to first sequences of microinstructions for 
performing operations on said addresses, 

said objects containing operands as data objects and instructions as 
procedure objects, 

and said processor means including 

protection means for preventing a user, currently using said digital 
computer system to execute a program comprising at least one procedure 
object, from obtaining unauthorized access to objects of another user, 
said protection means including 

subject number memory means responsive to the operation of said 
processor means for storing a currently active subject number of a 
plurality of subject numbers, 

each subject number corresponding to and identifying one of a 
plurality of subjects, each subject comprising the combination of (1) a 
user of said digital computer system, (2) a process of said digital 
computer system for executing a procedure of said user, and (3) the type 
of operation to be performed by said digital computer system in response 
to an instruction of a procedure of said user, and 

said currently active subject number identifies (1) the user currently 
utilizing said digital computer system, (2) the process currently 
executing a procedure of said user's program, and (3) the type of 
operation to be performed by said digital computer system in response to a 
current instruction of a procedure of said user's program, 

protection memory means for storing at least one access control list, 
each access control list corresponding to an object and comprising at 
least one access control entry, each access control entry corresponding to 
a subject having access rights to said object and containing the access 
rights of said subject to said object, and 

access right confirmation means responsive to a currently active 
subject number and to the operations of said processor means for indexing 
said protection means in response to a current instruction of a procedure 
of said user's program when said said current instruction requests access 
to an object and for comparing the access rights of the currently active 
subject to the access control list associated with said object. 

42 05644766 Jul 1 1997 395/620 System and method for managing a 
Aug 23 1 996 hierarchical storage system 

through improved data migration 
Inventor: Coy; Henry Robert et al. 
Assignee: International Business Machines Corporation 
Abstract: 

A system and method are provided for preserving spacial and temporal 
locality of sets of related objects when moving the sets within a storage 
hierarchy via a common server. The appropriate meta data is gathered to 
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a hierarchical data storage system in communication with the server 
and having a plurality of levels of media instances wherein data is stored 
more economically on a lower level; 

means for identifying a logical cluster of data objects in a first 
level; 

means for identifying at least one media instance in a lower level for 
storing said logical cluster by first attempting to identify at least one 
media instance already containing other data objects from said logical 
cluster, second, attempting to identify at least one empty media instance 
and third, identifying a media instance with the largest available space; 
and 

storage means for storing said logical cluster in a minimum number of 
identified media instances. 

43 05655101 Aug 5 1997 395/475 Accessing remote data objects in a 
May 27 1994 distributed memory environment 

using parallel address locations 
at each local memory to reference 
a same data object 

Inventor: OTarrell; William G. et al. 

Assignee: International Business Machines Corporation 

Abstract: 

A mechanism and method for accessing remote data objects in a 
distributed memory environment is disclosed. In the distributed memory 
environment, a number of parallel processors are remote from each other 
and each has memory storage capacity with parallel address locations. For 
each data object stored in the local memory of a processor, that processor 
stores a variable at a specific location pointing to the address of the 
data object in its local memory. At the same (parallel) location in the 
local memories of all remote parallel processors, a variable pointing to 
the home processor for the data object is stored. In order to access the 
data object, it is only necessary to locate the identifier variable in the 
processor processing a program pointing to the processor having the data 
object in storage. Because of the parallel address space, the location 
will automatically point directly to the same address location in the home 
storage processor, and this address location contains the address pointing 
to the actual location of the data object in the local storage of that 
processor. Alternate means for updating the variable information on data 
object storage is also provided. In one system, changes are broadcast 
throughout the parallel processor environment while in the other system, 
changes are merely retained on the home processor or the home processor 
and one remote parallel processor responsible for recording changes in 
that region of the distributed memory environment. When accessed by 
another remote parallel processor, the change information will be 
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44 04575797 Mar 1 1 1986 395/385 Digital data processing system 
May 22 1981 incorporating object-based 

addressing and capable of 
executing instructions belonging 
to several instruction sets 

Inventor: Gruner; Ronald H. et al. 

Assignee: Data General Corporation 

Abstract: 

A digital computer system having a memory system organized into 
objects for storing data and a processor for processing data in response 
to instructions. An object identifier is associated with each object. The 
memory system responds to logical addresses for data which specify the 
object' containing the data and the offset of the data in the object. The 
objects include procedure objects and data objects. The procedure objects 
contain procedures including the instructions. Each instruction contains 
an operation code which belongs to one of several sets of operation codes. 
All instructions in a single procedure belong to a single operation code 
set, and associated with each procedure is an operation code set 
identifier specifying the operation code set to which the instructions in 
the procedure belongs. Operation codes are decoded in the processor in 
response to both the operation code and a dialect value representing the 
operation code set identifier for the operation code set to which the 
operation code belongs. The dialect value changes only on execution of a 
call operation or a return operation. 
Exemplary Claim [1]: 

1 . A digital computer system comprising: 

(1) memory means for storing and providing items of data, said items 
of data including instructions, each one of said instructions containing 
an operation code of a plurality of operation codes, said operation codes 
belonging to a plurality of functionally different operation code sets, 
said operation codes in a given one of said operation code sets being 
definable solely with reference to said given operation code set, and said 
instructions having common formats; and 

(2) processor means connected to said memory means for receiving said 
items including said instructions and responding to each said received 
instruction by performing said operation defined for said operation code 
in said received instruction in said operation code set to which said 
operation code in said received instruction belongs. 
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Feb 15 1990 control within a distributed data 
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selected access control profile, as desired. Further, the resource manager 
may utilize this communication technique to control access to a resource 
object by utilizing the information contained within the access control 
profile to determine if the requester is authorized to access the resource 
object and whether or not the requester has been granted sufficient 
authority to take selected actions with respect to that resource object. 
In a preferred embodiment of the present invention, each access control 
profile may include access control information relating to a selected 
user; a selected resource object; a selected group of users; a specified 
level of authority associated with a selected user; a selected set of 
resource objects; or, a predetermined set of resource objects and a 
selected list of users each authorized to access at least a portion of 
said predetermined set of resource objects. 
Exemplary Claim [1]: 

1 . A computer implemented method of providing variable authority level 
user access control for a plurality of resource objects within a 
distributed data processing system having at least one reference monitor 
service and a plurality of resource managers associated with said 
plurality of resource objects, each of said plurality of resource managers 
controlling access to different selected ones of said resource objects, 
each of said resource managers associated with a reference monitor 
service, said method comprising the computer implemented steps of: 

storing a plurality of unique access control profiles within each said 
reference monitor service, wherein selected ones of said plurality of 
access control profiles each include an identification of a selected user 
and a specified level of authority associated with said selected user; 

querying an associated reference monitor service by a selected one of 
said resource managers in order to vary access control for a particular 
resource object by a selected user, wherein access to said particular 
resource object is controlled by said selected resource manager; 

transmitting a selected access control profile associated with said 
selected user from said associated reference monitor service to said 
selected one of said resource managers if said selected access control 
profile existed in said associated reference monitor service; if not, 
attempting to retrieve said selected access control profile from another 
said reference monitor service and thereafter transmitting said retrieved 
access control profile to said selected one of said resource managers; 

utilizing said selected resource manager to selectively modify said 
access control information in said selected access control profile; and 

storing said selectively modified access control information in said 
selected access control profile within an associated reference monitor 
service wherein subsequent access to said particular resource object may 
be variably controlled. 
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control profiles are exchanged between the reference monitor service and a 
resource manager in response to an attempted access of a particular 
resource object controlled by that resource manager. The resource manager 
may then control access to the resource object by utilizing the exchanged 
access control profile to determine the extent access is permitted by 
means of the specified level of authority contained therein. In a 
preferred embodiment of the present invention, the access intent of a 
selected user is determined in conjunction with an attempted access of a 
particular resource object and stored. Thereafter, a comparison of the 
stated access intent with the specified level of authority contained 
within the access control profile may be utilized to grant or deny access. 
Exemplary Claim [1]: 

1 . A computer implemented method of providing variable authority level 
user access control for a plurality of resource objects within a 
distributed data processing system having at least one reference monitor 
service and a plurality of resource managers associated with said 
plurality of resource objects, each of said plurality of resource managers 
controlling access to different selected ones of said resource objects, 
each of said resource managers associated with a reference monitor 
service, said method comprising the computer implemented steps of: 

storing a plurality of unique access control profiles within each said 
reference monitor service, wherein selected ones of said plurality of 
access control profiles each include an identification of a selected user 
and a specified level of authority associated with said selected user; 

querying an associated reference monitor service by a selected one of 
said resource managers in response to an attempted access of a particular 
resource object by a selected user, wherein access to said particular 
resource object is controlled by said selected resource manager; 

transmitting a selected access control profile associated with said 
selected user from said associated reference monitor service to said 
selected one of said resource managers if said selected access control 
profile existed in said associated reference monitor service; if not, 
attempting to retrieve said selected access control profile from another 
said reference monitor service and thereafter transmitting said retrieved 
access control profile to said selected one of said resource managers; 

utilizing said selected resource manager to control access to said 
particular resource object in accordance with access control information 
in said selected access control profile; and 

denying access to said particular resource object by said selected 
user in response to a failure to retrieve said selected access control 
profile. 
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stored in a computer memory and accessed through a computer. These tables 
provide a mapping matrix between database objects of a plurality of 
RDBMSs. 

Exemplary Claim [1]: 

1. A system for copying a database object from a source database to a 
target database, wherein said target database may differ from said source 
database in an authorization scheme for database objects and in 
authorization statements used to implement the authorization scheme, said 
system comprising: 

a translation table for mapping a plurality of source authorizations 
of said source database to a plurality of target authorizations of said 
target database; 

means for identifying, from said translation table, a corresponding 
target authorization mapped to one of said source authorizations 
associated with a source database object to be copied to said target 
database; 

a composition table for automatically composing at least one 
authorization statement for implementing said corresponding target 
authorization in a syntax of said target database; and 

means for copying said source database object from said source 
database to said target database. 
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Inventor: Kramer; Paul H. et al. 
Assignee: International Business Machines Corporation 
Abstract: 

A data processing system include a plurality of data objects which are 
accessible by application programs through a system level interface. Each 
data object has an associated user access list. In addition, each object 
has at least one key indicating which applications can access that object. 
The key is preferably maintained in a protected storage area, accessible 
only by the low level system interface. Both the application identifier 
key and the user who invoked that application must match the identifier 
information in the data object for access to be allowed to that object. If 
an unauthorized user attempts access to the data object through the 
correct application, or an authorized user attempts access through an 
incorrect application, access to the data object will be denied by the low 
level interface. 
Exemplary Claim [1]: 

1. In a data processing system, a computer-implemented method for 
controlling access to a plurality of data objects, comprising the steps 
of: 

when each of the plurality of objects is created, associating with 




$mh object at teas* mm user S tosffierp mti at km erne Est of 

im^toig & first mfrftajpar wsmg & wssr iidiMiffcf io fctefcily on 
invoking wscr, 

Smoking ft sOTnd iftiMiiii^r fitirti to first data ranii^n Mtf 
wto ito .sastsci#i (gate mamnier Mer attempts & bto a cto ol^ect, 
aUiiwinii sisuli 5*ccesK m\y ifojie of to lists *of cto iTEntd©cr Itoitifiens 
nasaraHftNi wifli fi& data object i^mito Ih* to fim turn! .skwchS 
ran^n», m\d to first 4m manager \m tosn. iivoked with a us£r 
identifier sssvtiuMed wUHl to otyefit- 

49 0S24I6S2 Anill W3 39SF20&J9 Border ttrfs Ixiviill nMfiijE mtf 
Apr IS 1991. $Bti£tf&i&9 capacity in A first 

inefwcirk M Only local Mslras 
<3tp8&ifi(y in g sasSHIMl iigtowt 

Inventor: Bryant; David B. et al. 

Assignee: International Business Machines Corporation 

Abstract: 

A method and apparatus for interconnecting multiple data processing 
networks, each data processing network including: multiple network nodes 
having routing and functional capability within a data processing network; 
and, multiple endpoint nodes, each including only local address 
capability. Each network node may be connected to multiple endpoint nodes 
and other network nodes; however, connection is only permitted to network 
nodes within the same data processing network. A border node is 
established for interconnection between two data processing networks. The 
border node includes a network node interface having routing and 
functional capability within a first data processing network and an 
endpoint node interface having local address capability. When 
interconnected between the first data processing network and a network 
node within a second data processing network, the border node emulates a 
network node within the first data processing network while appearing as 
an endpoint node within the second data processing network, permitting 
full connectivity between the two networks. The border node then maintains 
routing information for communication between the two data processing 
networks in two segments. A first segment details the route between the 
first data processing network and the border node while a second segment 
details the route between the border node and a node within the second 
data processing network. 
Exemplary Claim [1]: 

1. A method for interconnecting a plurality of data processing 
networks, each said data processing network including: a plurality of 
network nodes, each said network node having routing and functional 
capability within said data processing network, and, a plurality of 
endpoint nodes, each said endpoint node having only local address 
capability, each said network node being connected to another said network 
node only within the same data processing network and to a plurality of 
said endpoint nodes within any said data processing network, said method 
comprising the steps of: 

establishing a border node within a first one of said data processing 
networks; 

establishing within said border node a network node interface having 
routing and functional capability for said first data processing network; 

establishing within said border node an endpoint node interface having 
local address capability; 

linking sad endpoint node interface of said border node to a selected 
network node within a second one of said data processing networks, 
identifying said border node as an endpoint node having local address 
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Assignee: International Business Machines Corporation 

Abstract: 

A computer-implemented method is provided which helps to render the 
differences between relational database management system (RDBMS) types 
transparent. The computerized process enables database objects and 
authorizations on objects, as well as user privileges, to be moved or 
copied from one RDBMS to another within a distributed relational database 
environment without requiring a database administrator to have expertise 
in every RDBMS type in that environment. The computerized process is 
achieved using three inter-related and inter-dependent tables, a 
translation table, an implications table and a composition table which are 
stored in a computer memory and accessed through a computer. These tables 
provide a mapping matrix between database objects of a plurality of 
RDBMSs. 
Exemplary Claim [I]: 

1 . A computer program product for use with one or more database 
management systems, said computer program product comprising: 

a computer usable medium having computer readable program code means 
embodied in said medium for establishing at least one target authorization 
to a target database derived from at least one source authorization to a 
source database the source database being in communication with the target 
database and a workstation, the source database, target database, and 
workstation being in a computer system having a processor, memory, and 
data storage device, said source database using a source database 
management system that is different from a target database management 
system used by the target database, said computer readable program code 
means comprising: 

computer readable program code means for causing a computer to map 
said source authorization to a corresponding target authorization of said 
target database management system; 

computer readable program code means for causing a computer to 
identify at least one implication for said source authorization having a 
corresponding target authorization having non- identical function to said 
source authorization; and 

computer readable program code means for causing a computer to 
automatically compose at least one authorization statement for 
implementing said corresponding target authorization in a syntax of said 
target database management system. 
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